master-client(-management)

Take Windows Up to 11

Category: MDT

Windows 10 20H2 nice to know for me and IT Pros and Enterprise admins (curated link list)

23/10/2020 / / 0 Comments

Latest Update: January 13, 2020

Windows 10 20H2 is again a small fall release with a long support cycle of 30 months. It shares a lot with the spring release (NTK 2004) so check out my list for this release, too.
If you found something new before me or if I missed anything important, please send me a message via Twitter.

General

Topic Link Source
What’s new for IT Pros New and Updated Features of interest for IT Pros Microsoft
What’s new What’s new in Windows 10, version 2004 Microsoft
Release Status Known issues and notifications Microsoft
Removed features Features and functionality removed in Windows 10 Microsoft
Connection Endpoints Manage connection endpoints for Windows 10 Enterprise, version 20H2 Microsoft

Group Policies

Topic Link Source
WMI Filter Select Version,ProductType from Win32_OperatingSystem WHERE Version LIKE "10.0.19042%" and ProductType = "1" Sascha Stumpler
ADMX ADMX files for 20H2 Microsoft
Baseline (DRAFT) Security Baseline (DRAFT) for Windows 10 20H2 Microsoft
Baseline (FINAL) Security Baseline (FINAL) for Windows 10 20H2 Microsoft
Baseline Download Security Compliance Toolkit Microsoft

Autopilot, OSD, MEMCM, Intune and MDT

Topic Link Source
MDM What’s new in mobile device enrollment and management Microsoft
MDM-CSP Policy CSP – LocalUsersAndGroups Microsoft
LCU+SSU Combined Servicing Stack and Cumulative Updates Microsoft
Renamed BUILTIN Accounts Windows 10 2004/20H2 and renamed Administrator accounts are recreated Michael Niehaus

Misc

Topic Link Source
Important Issues Knowledgebase: Important Issues for Windows 10, version 20H2 build 19042 DirTeam, Sander Berkouwer
MMC error After updating to Windows 10, version 20H2, you might receive an error when accessing the sign-in options or users MMC snap-in Microsoft

Windows 10 2004 nice to know for me and IT Pros and Enterprise admins (curated link list)

28/05/2020 / / 2 Comments

Latest Update: January 13, 2020

Windows 10 2004 is the first big release since 1903 (NTK 1903) and compared to the small update of Windows 10 1909 (NTK 1909) this brings a lot of changes.
If you found something new before me or if I missed anything important please write a comment or send me a message via Twitter.

General

Topic Link Source
What’s new for IT Pros New and Updated Features of interest for IT Pros Microsoft
What’s new What’s new in Windows 10, version 2004 Microsoft
Release Status Known issues and notifications Microsoft
Removed features Features and functionality removed in Windows 10 Microsoft
Connection Endpoints Manage connection endpoints for Windows 10 Enterprise, version 2004 Microsoft

Group Policies

Topic Link Source
WMI Filter Select Version,ProductType from Win32_OperatingSystem WHERE Version LIKE "10.0.19041%" and ProductType = "1" Sascha Stumpler
New settings 17 new ADMX settings Jörgen Nilsson
ADMX ADMX files for 2004 Microsoft
Baseline (DRAFT) Security Baseline (DRAFT) for Windows 10 2004 Microsoft
Baseline (FINAL) Security Baseline (FINAL) for Windows 10 2004 Microsoft
Baseline Download Security Compliance Toolkit Microsoft

Autopilot, OSD, MEMCM, Intune and MDT

Topic Link Source
Autopilot Autopilot features in 2004 Michael Niehaus
MDT BIOS Making MDT work with Windows ADK 2004 for BIOS Machines Johan Arwidmark
MDT Hotfix Windows 10 deployments fail with MDT on computers with BIOS type firmware Microsoft
Servicing New custom actions during and after a feature update Microsoft
Dynamic Update New switches to exclude Drivers and Cumulative Updates Microsoft
New MDM What’s new in MDM for Windows 10, version 2004 Microsoft
MUI Better Language Handling Michael Niehaus
MDT Updates OSD MDT and installing updates during a task sequence Michael Niehaus
Renamed BUILTIN Accounts Windows 10 2004/20H2 and renamed Administrator accounts are recreated Michael Niehaus

Windows Subsystem for Linux 2 aka WSL2

Topic Link Source
Cool WSL tips Cool WSL (Windows Subsystem for Linux) tips and tricks you (or I) didn’t know were possible Scott Hanselman
Docker in WSL2 How to set up Docker within Windows System for Linux (WSL2) on Windows 10 Scott Hanselman
Remote debugging Remote Debugging a .NET Core Linux app in WSL2 from Visual Studio on Windows Scott Hanselman
Update to WSL2 Manually update Linux Kernel to WSL2 Craig Loewen, MS
Access WSL VHDX Access WSL2 .vhdx on External Drive Within a Windows 10 System Image Ed Burns

Misc

Topic Link Source
MSIX MSIX Installation possible without Sideloading Microsoft
Upgrade HVCI Update to Windows 10, version 2004 might encounter an update compatibility hold due to HVCI Microsoft
Wifi 2004 supports Wi-Fi 6 and WPA3 Microsoft
Identity Identity-related Features in Windows 10 version 2004 DirTeam.com
Reset Reset PC from the cloud Microsoft
Reserved Storage DISM Reserved Storage Command-line Options Microsoft
Notepad Notepad enhancements in Windows 10 2004 Microsoft
VMware Workstation VMware Workstation 15.5.5 supports Hyper-V and therefor Credential Guard and WSL on the hosting system VMware
VMware Workstation VMware Workstation and Hyper-V Microsoft
Citrix Issues Citrix Known Issues with 20H1 Insider Preview including a problem with ICA connections Citrix
OneDrive Issues using OneDrive On-Demand after updating to 2004 Microsoft
AppX the list of removeable apps did not change
Windows 10 1903 Built-In Apps: What to Keep		 Anton Romanyuk, Microsoft

Install Microsofts January Meltdown / Spectre Updates during SCCM or MDT Build and Capture Task Sequence

12/01/2018 / / 0 Comments

Problem

I tried to create images of Windows 7 and Windows 10 (1607, 1703, 1709) with a SCCM Build and Capture Task Sequence. I deployed the January Windows Updates to the imaging clients so that the images should include the fixes for the Meltdown and Spectre vulnerabilities. But unfortunately this did not work. The reason is that the Antivirus compatibility Registrykey mentioned in this article had not been set before the updates were installed.

Update: After testing Build and Capture of Windows 10 with MDT I have added the necessary steps to the article.
Update 2: Thanks to @manelrodero for pointing out that a reboot is not required between setting the key and the Install Update step.
Update 3: Microsoft announced that this is not longer necessary beginning with the Cumulative Update 03-2018

Solution

You just have to add the registry in your Build and Capture sequence right before the update step performs the update scan.

SCCM

  1. Add a Run Command Line Step to your Build and Capture Task Sequence before the Install Updates step containing the following line
REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" /v cadca5fe-87d3-4b96-b7fb-a231484277cc /T REG_DWORD /D "0x00000000" /F

QualityCompat Key
2. Make sure that the box Evaluate software updates from cached scan results is not checked in the first Install Updates step.

Install Updates step

MDT

  1. Add a Run Command Line Step to your Build and Capture Task Sequence before the Windows Update (Pre-Application Installation) step containing the following line
REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" /v cadca5fe-87d3-4b96-b7fb-a231484277cc /T REG_DWORD /D "0x00000000" /F

QualityCompat Key

© 2023 master-client(-management)

Theme by Anders NorenUp ↑