Chad Simmons, Author at Catapult - a Quisitive Company

Windows11 Autopilot-can't connect to the URL

Windows Autopilot error “can’t connect to the URL for your organization’s MDM terms of use”

infrastructureBy Chad Simmons October 21, 2021

I was spinning up Windows Autopilot in a new customer’s tenant and got hit with this message during the Windows Out-of-Box experience (OOBE).

Something went wrong.
Looks like we can't connect to the URL for your organization's MDM terms of use.&nbsp; Try again, or contact your system administrator with the problem information from this page.
Additional problem information:
Error: invalid_client
Error subcode:
Description: failed%20%to%20%authenticate%20user

Something went wrong.

Looks like we can't connect to the URL for your organization's MDM terms of use.  Try again, or contact your system administrator with the problem information from this page.

Additional problem information:

Error: invalid_client

Error subcode:

Description: failed%20%to%20%authenticate%20user

The most interesting Google/Bing/DuckDuckGo search result was on a MSDN forum, but that didn’t seem to make sense for this tenant. For this tenant / scenario, the solution was really simple……

Deploy the Azure Virtual Desktop client blog

Deploy the Azure Virtual Desktop client for Windows with Microsoft Intune

infrastructureBy Chad Simmons September 28, 2021

When working with a customer recently we needed to deploy the Azure Virtual Desktop client for Windows with Microsoft Intune but noticed an oddity that the MSI system-based installer was being detected by Intune as a user-based installer. A bit of bingooglefoo on the Interwebs landed me at an article by Alex Durrant on the…

ConfigMgr Client Policy Reset script

infrastructureBy Chad Simmons March 18, 2021

So you need to perform a hard policy reset on a few (or a lot) of ConfigMgr client computers because they seem to be stuck? PowerShell to the rescue! If you only need to reset policy on a few computers, just run this command

$Computers = Get-Content -Path "C:\Temp\PolicyRefresh.txt";
$Cred = Get-Credential;
ForEach ($Computer in $Computers) { Write-Host "Resetting ConfigMgr client policy on $Computer"; Invoke-WmiMethod -Namespace root\CCM -Class SMS_Client -Name ResetPolicy -ArgumentList '1' -ComputerName $Computer -Credential $Cred -ErrorAction Stop }

$Computers = Get-Content -Path "C:\Temp\PolicyRefresh.txt";

$Cred = Get-Credential;

ForEach ($Computer in $Computers) { Write-Host "Resetting ConfigMgr client policy on $Computer"; Invoke-WmiMethod -Namespace root\CCM -Class SMS_Client -Name ResetPolicy -ArgumentList '1' -ComputerName $Computer -Credential $Cred -ErrorAction Stop }

But if you have a bunch to wade through or…

Cleanup System Disk Files

infrastructureBy Chad Simmons February 17, 2021

There have been many scripts and solutions written for cleaning up unnecessary files on Windows computers to free up disk space. I’ve used several over the years, but nothing out on the interwebs fit what I thought was the best approach which is delete files that you KNOW are not needed delete progressively “riskier” types…

Easy IIS log reading with PowerShell

infrastructureBy Chad Simmons February 2, 2021

This is just a bit of PowerShell to make reading and filtering IIS logs quick and easy.

Function Out-GridViewIISLog ($File) { 
   #.Synopsis 
   # Convert IIS log file to CSV and display in a GridView 
   #.LINK 
   # Based on https://stevenaskwith.com/2012/05/22/parse-iis-log-files-with-powershell/ 
   # Performance inspired by http://www.happysysadm.com/2014/10/reading-large-text-files-with-powershell.html 
   ########################################################################################################### 
   $Headers = @((Get-Content -Path $File -ReadCount 4 -TotalCount 4)[3].split(' ') | Where-Object { $_ -ne '#Fields:' });
   Import-Csv -Delimiter ' ' -Header $Headers -Path $File | Where-Object { $_.date -notlike '#*' } | Out-GridView -Title "IIS log: $File";
};
Out-GridViewIISLog -File "C:\InetPub\Logs\LogFiles\W3SVC1\u_ex$(Get-Date -F 'yyMMdd').log"

Function Out-GridViewIISLog ($File) {

#.Synopsis

# Convert IIS log file to CSV and display in a GridView

#.LINK

# Based on https://stevenaskwith.com/2012/05/22/parse-iis-log-files-with-powershell/

# Performance inspired by http://www.happysysadm.com/2014/10/reading-large-text-files-with-powershell.html

###########################################################################################################

$Headers = @((Get-Content -Path $File -ReadCount 4 -TotalCount 4)[3].split(' ') | Where-Object { $_ -ne '#Fields:' });

Import-Csv -Delimiter ' ' -Header $Headers -Path $File | Where-Object { $_.date -notlike '#*' } | Out-GridView -Title "IIS log: $File";

};

Out-GridViewIISLog -File "C:\InetPub\Logs\LogFiles\W3SVC1\u_ex$(Get-Date -F 'yyMMdd').log"

Get the latest version on GitHub.

ConfigMgr: Get primary users with email for a collection

infrastructureBy Chad Simmons October 30, 2020

Have you ever needed to send an email to all of the primary / last logged on / currently logged on user for every computer in a collection? Here’s a nice little PowerShell script that can help you out with that. Feel free to submit updates, issues, and requests in GitHub. The latest code can…

Report all ConfigMgr admin console users

infrastructureBy Chad Simmons October 26, 2020

So, who exactly has access to the ConfigMgr admin console? This bit of PowerShell will generate a CSV report of each Active Directory user in each role/group*. The latest code can be obtained from GitHub. https://github.com/ChadSimmons/Scripts/blob/default/ConfigMgr/Document/Get-MECMAdminConsoleUsers.ps1 *Note: nested groups are not yet supported.

#.LINK https://github.com/ChadSimmons/Scripts/blob/default/ConfigMgr/Document/Get-MECMAdminConsoleUsers.ps1
$SiteCode = 'LAB'
$SiteServer = 'CMPrimary.contoso.com'
$ExportFile = 'C:\Data\Get-MECMAdminConsoleUsers.csv'
Push-Location -Path "$SiteCode`:"
$CMAdminUsers = Get-CMAdministrativeUser | Select-Object LogonName, IsGroup
Pop-Location
$CMAdminUserList = @()
ForEach ($CMAdminUser in $CMAdminUsers) {
 Write-Output $CMAdminUser.LogonName
 If ($CMAdminUser.IsGroup -eq $true) {
  $CMAdminUserIDs = (Get-WmiObject -ComputerName $SiteServer -Namespace "root\SMS\site_$($SiteCode)" -Query "Select UniqueUserName from SMS_R_User where UserGroupName like `"$($CMAdminUser.LogonName.replace('\','\\'))`"").UniqueUserName
 } Else {
  $CMAdminUserIDs = (Get-WmiObject -ComputerName $SiteServer -Namespace "root\SMS\site_$($SiteCode)" -Query "Select * from SMS_R_User where UniqueUserName = `"$($CMAdminUser.LogonName.replace('\','\\'))`"").UniqueUserName
 }
 ForEach ($CMAdminUserID in $CMAdminUserIDs) {
  $CMAdminUserList += @(Get-WmiObject -ComputerName $SiteServer -Namespace "root\SMS\site_$($SiteCode)" -Query "Select * from SMS_R_User where UniqueUserName = `"$($CMAdminUserID.replace('\','\\'))`"" | Select-Object @{N = 'Group'; E = { $CMAdminUser.LogonName } }, UniqueUserName, ResourceID, ResourceType, UserName, Name, displayname, WindowsNTDomain, distinguishedName, FullDomainName, FullUserName, UserPrincipalName, mail, mobile, telephoneNumber, UserGroupName)
 }
}
$CMAdminUserList | Select-Object Group, UniqueUserName, ResourceID, ResourceType, UserName, Name, displayname, WindowsNTDomain, distinguishedName, FullDomainName, FullUserName, UserPrincipalName, mail, mobile, telephoneNumber | Export-Csv -Path "filesystem::$($ExportFile)" -NoTypeInformation

#.LINK https://github.com/ChadSimmons/Scripts/blob/default/ConfigMgr/Document/Get-MECMAdminConsoleUsers.ps1

$SiteCode = 'LAB'

$SiteServer = 'CMPrimary.contoso.com'

$ExportFile = 'C:\Data\Get-MECMAdminConsoleUsers.csv'

Push-Location -Path "$SiteCode`:"

$CMAdminUsers = Get-CMAdministrativeUser | Select-Object LogonName, IsGroup

Pop-Location

$CMAdminUserList = @()

ForEach ($CMAdminUser in $CMAdminUsers) {

Write-Output $CMAdminUser.LogonName

If ($CMAdminUser.IsGroup -eq $true) {

$CMAdminUserIDs = (Get-WmiObject -ComputerName $SiteServer -Namespace "root\SMS\site_$($SiteCode)" -Query "Select UniqueUserName from SMS_R_User where UserGroupName like `"$($CMAdminUser.LogonName.replace('\','\\'))`"").UniqueUserName

} Else {

$CMAdminUserIDs = (Get-WmiObject -ComputerName $SiteServer -Namespace "root\SMS\site_$($SiteCode)" -Query "Select * from SMS_R_User where UniqueUserName = `"$($CMAdminUser.LogonName.replace('\','\\'))`"").UniqueUserName

}

ForEach ($CMAdminUserID in $CMAdminUserIDs) {

$CMAdminUserList += @(Get-WmiObject -ComputerName $SiteServer -Namespace "root\SMS\site_$($SiteCode)" -Query "Select * from SMS_R_User where UniqueUserName = `"$($CMAdminUserID.replace('\','\\'))`"" | Select-Object @{N = 'Group'; E = { $CMAdminUser.LogonName } }, UniqueUserName, ResourceID, ResourceType, UserName, Name, displayname, WindowsNTDomain, distinguishedName, FullDomainName, FullUserName, UserPrincipalName, mail, mobile, telephoneNumber, UserGroupName)

}

$CMAdminUserList | Select-Object Group, UniqueUserName, ResourceID, ResourceType, UserName, Name, displayname, WindowsNTDomain, distinguishedName, FullDomainName, FullUserName, UserPrincipalName, mail, mobile, telephoneNumber | Export-Csv -Path "filesystem::$($ExportFile)" -NoTypeInformation

ConfigMgr SSRS – UserTokenSIDs contains an error: “The trust relationship between this workstation and the primary domain failed”

infrastructureBy Chad Simmons May 7, 2020

A few days ago I began receiving errors when running reports in the ConfigMgr console and the web portal.

The DefaultValue expression for the report parameter UserTokenSIDs contains an error: "The trust relationship between this workstation and the primary domain failed". (rsRuntimeErrorInExpression)

1	The DefaultValue expression for the report parameter UserTokenSIDs contains an error: "The trust relationship between this workstation and the primary domain failed". (rsRuntimeErrorInExpression)

A few other very generic errors were displayed as well, but this one was the most prevalent and detailed (if you call that detailed). The errors occurred for every user when executing any report that…

ConfigMgr Database Maintenance – New 2020 edition

infrastructureBy Chad Simmons March 23, 2020

The Usage Rights for SQL technology included with ConfigMgr isn’t obvious or logical. Thus, performing database optimization on ConfigMgr with Ola’s Maintenance Solution requires a bit of licensing guidance.

Microsoft Word spellcheck didn’t

General, infrastructureBy Chad Simmons February 7, 2020

When Microsoft Word won’t spellcheck a document, proffing is probably disabled on the document, style, or selected text.

Author Archives: Chad Simmons