CHAPTER -3

SCCM DEFINITION

SCCM (System Center Configuration Manager) is a popular IT management

software solution developed by Microsoft. It provides organizations with a
comprehensive set of tools for managing and configuring their IT infrastructure,
including devices, applications, and operating systems. SCCM allows IT
administrators to automate tasks, deploy software updates, manage security
policies, and monitor system health. It also provides real-time reporting and
analytics to help organizations make informed decisions about their IT strategy.
SCCM is part of the Microsoft System Center suite of products, which includes
other tools for managing virtual machines, data protection, and service
management.

APPLICATION MANAGEMENT USING SCCM

SCCM (System Center Configuration Manager) is a powerful tool used by

application managers to manage and deploy software applications across an
organization's network. Here are some ways SCCM can be used by application
managers:

1. Application Deployment: SCCM allows application managers to create and

distribute software packages to specific groups of users or computers. This
ensures that the latest versions of applications are installed consistently and
efficiently.

2. Application Inventory: SCCM provides a comprehensive view of all installed

software across the organization, making it easy for application managers to
identify and manage applications. This also helps in tracking license usage and
compliance.

3. Application Updates: SCCM automates the process of updating applications,

ensuring that all users have the latest versions installed. This reduces the
workload on IT staff and minimizes the risk of security vulnerabilities.
4. Application Compatibility: SCCM allows application managers to test new
applications for compatibility with existing systems and applications, reducing the
risk of conflicts and ensuring a smooth deployment process.
5. Application Monitoring: SCCM provides real-time monitoring of application
performance, allowing application managers to quickly identify and resolve any
issues that arise. This ensures that applications continue to function optimally
and do not negatively impact user productivity.

Overall, SCCM provides application managers with a comprehensive set of tools

to manage software applications across their organization's network, ensuring
consistency, efficiency, and compliance while minimizing IT workload and costs.

OPERATING SYSTEM DEPLOYMENT USING SCCM

System Center Configuration Manager (SCCM) is a powerful tool for deploying

operating systems in an organization. Here's a high-level overview of the steps
involved in deploying operating systems using SCCM:

1. Create a task sequence: A task sequence is a series of actions that are

executed during the operating system deployment process. It can include steps
such as partitioning, formatting, installing the operating system, and configuring
settings.

2. Create a deployment: Once you have created a task sequence, you can create
a deployment to distribute it to the appropriate devices. You can specify the
collection of devices that will receive the deployment, as well as any conditions
that must be met before the deployment is offered to users.

3. Offer the deployment: After creating the deployment, you can offer it to users
and devices in the specified collection. Users will be prompted to install the new
operating system, and they can choose to do so immediately or schedule it for a
later time.
4. Monitor progress: SCCM provides detailed reporting and monitoring tools to
help you track the progress of your operating system deployments. You can
view information such as the number of devices that have completed the
deployment, any errors or issues that have been encountered, and the overall
success rate of your deployments.
5. Maintain and update: As new versions of operating systems are released, you
will need to update your task sequences and deployments to ensure that your
devices are running the latest version. SCCM provides tools for updating your
deployments and task sequences, as well as for migrating users and data
between operating systems.

Overall, SCCM provides a powerful and flexible solution for deploying operating
systems in an organization. With its advanced features and reporting capabilities,
you can ensure that your devices are running the latest version of Windows while
minimizing disruption to your users and reducing downtime.

ENDPOINT- PROTECTION USING SCCM

System Center Configuration Manager (SCCM) is a powerful tool for managing

and securing endpoints in an organization's network. One of the critical features
of SCCM is endpoint protection, which provides several benefits, including:

1. Real-time protection against malware: SCCM's endpoint protection solution,

Microsoft Defender Antivirus, provides real-time protection against malware,
viruses, and other threats. It uses advanced techniques like machine learning
and behavioral analysis to detect and block potential threats.

2. Centralized management: SCCM allows administrators to manage endpoint

protection from a central console, making it easy to monitor and manage the
security status of all endpoints in the network.

3. Comprehensive reporting: SCCM provides detailed reports on endpoint

protection activities, including threat detections, quarantine actions, and
remediation steps. These reports help administrators identify potential security
issues and take proactive measures to mitigate them.

4. Integration with other Microsoft tools: SCCM integrates seamlessly with other
Microsoft tools like Azure Active Directory (AD), Microsoft Intune, and Microsoft
Defender for Endpoint (DFE). This integration provides a holistic view of endpoint
security across the organization's entire IT infrastructure.
5. Customizable policies: SCCM allows administrators to create customizable
policies for endpoint protection based on specific organizational requirement
These policies can be applied to individual devices or groups of devices,
providing granular control over endpoint security.

Overall, endpoint protection using SCCM provides a comprehensive and

effective solution for securing endpoints in an organization's network. Its real-time
protection, centralized management, comprehensive reporting, integration with
other Microsoft tools, and customizable policies make it a powerful tool for
managing and securing endpoints in today's complex IT environments.

TROUBLESHOOTING SCCM SERVER

1. SCCM Server is not communicating with the network:

- Check the network connectivity of the SCCM server.
- Verify that the server's IP address and DNS settings are correct.
- Ensure that the server's network adapter is enabled and configured correctly.
- Check if there are any firewall rules blocking communication between the
SCCM server and other devices on the network.

2. SCCM Configuration Manager console is not opening:

- Verify that the Configuration Manager console is installed correctly on the
server.
- Check if the Configuration Manager console service is running.
- Ensure that the Configuration Manager console is configured to use the
correct site code and site server.
- Check if there are any issues with the SQL Server instance used by SCCM.

3. SCCM Client installation fails:

- Verify that the SCCM client installation package is installed correctly on the
server.
- Check if there are any issues with the distribution points used by SCCM for
client installation.
- Ensure that the client installation package is configured to use the correct site
code and site server.
 - Verify that there are no conflicts with other software installed on the client
machine that may be preventing SCCM client installation.

4. SCCM software updates are not deploying:

- Verify that software updates are configured to be deployed to the desired
collection in SCCM.
- Check if there are any issues with the distribution points used by SCCM for
software update deployment.
- Ensure that the software update package is configured to use the correct site
code and site server.
- Verify that there are no conflicts with other software installed on the client
machine that may be preventing software update deployment.

5. SCCM inventory data is not being collected:

- Verify that inventory data collection is enabled in SCCM for the desired
collection.
- Check if there are any issues with the distribution points used by SCCM for
inventory data collection.
- Ensure that inventory data collection is configured to use the correct site code
and site server.
- Verify that there are no conflicts with other software installed on the client
machine that may be preventing inventory data collection.

TROUBLESHOOTING SCCM CLIENTS

Here are some common troubleshooting steps for SCCM clients:

1. Verify client communication:

- Check the client status in the SCCM console under Monitoring > Overview >
Client Status.
- Run the SCCM Client Health Check tool to diagnose any issues with client
communication.
- Check the client's DNS settings and ensure it can resolve the SCCM server's
name.
- Verify that the client's firewall is not blocking communication with the SCCM
server.
2. Verify client installation:
- Check the client installation log (C:\Windows\CCM\Logs\ClientInstall.log) for
any errors. - Verify that the SCCM client installation package is correctly
deployed and assigned to the device.
- Check that the device meets the prerequisites for SCCM client installation,
such as Windows version and architecture.

3. Verify software updates:

- Check the software update status in the SCCM console under Monitoring >
Overview > Software Updates Status.
- Verify that the device is correctly configured to receive updates from SCCM,
such as group membership and update deployment settings.
- Check that there are no conflicts with other update management tools, such
as Windows Update or third-party software update tools.

4. Verify hardware inventory:

- Check the hardware inventory status in the SCCM console under Monitoring >
Overview > Hardware Inventory Status.
- Verify that the device is correctly configured to send hardware inventory data
to SCCM, such as inventory cycle settings and inventory agent configuration.
- Check that there are no issues with network connectivity or firewall settings
that may prevent hardware inventory data from being sent to SCCM.

5. Verify software distribution:

- Check the software distribution status in the SCCM console under Monitoring
> Overview > Software Distribution Status.
- Verify that the device is correctly configured to receive software deployments,
such as group membership and deployment settings.
- Check that there are no issues with network connectivity or firewall settings
that may prevent software deployment packages from being downloaded and
installed on the device.

create Configuration Manager reports

You can create two types of reports directly from the Configuration Manager
console:
● Model-based report � Allows you to create a report based on a Reporting
Services model and select the attributes to be included with Report
Builder.
● SQL-based report � Allows you to create a traditional report based
directly off the database views by using SQL statements and stored
procedures.

To create a new model-based report

1. In the Configuration Manager console, select Monitoring.
2. In the Monitoring workspace, expand Reporting, and then select Reports.
3. In the Home tab, in the Create group, select Create Report.
4. On the Information page of the Create Report Wizard, configure the
following settings:
● Type: Select Model-based Report to create a report in Report
Builder by using a Reporting Services model.
● Name: Specify a name for the report.
● Description: Specify a description for the report.
● Server: Displays the name of the report server on which you are
creating this report.
● Path: Select Browse to specify a folder in which you want to store
the report.
5. On the Model Selection page of the wizard, select an available model in
the list that you use to create this report. When you select the report
model, the Preview section displays the SQL Server views and entities that
are made available by the selected report model.
6. On the Summary page of the wizard, review the settings. Select Previous
to change the settings or select Next to create the report.
7. On the Completion page of the wizard, select Close to exit the wizard,
Report Builder now opens where you can configure the report settings.
Enter your user account and password if you are prompted, and then
select OK. If Report Builder is not installed on the computer, you are
prompted to install it. Select Run to install Report Builder, which is required
to modify and create reports.
8. In Report Builder, create the report layout, select data in the available SQL
Server views, add parameters to the report, and so on. For more
 information about using Report Builder to create a new report, see the
Report Builder Help.
9. Select Run to run your report. Verify that the report provides the
information that you expect. Select Design to return to the Design view to
modify the report, if needed.
10. Select Save to save the report to the report server. You can run and
modify the new report in the Reports node in the Monitoring workspace
To create a new SQL-based report

1. In the Configuration Manager console, select Monitoring.

2. In the Monitoring workspace, expand Reporting, and then select Reports.
3. In the Home tab, in the Create group, select Create Report.
4. On the Information page of the Create Report Wizard, configure the
following settings:
● Type: Select SQL-based Report to create a report in Report Builder
by using SQL statements.
● Name: Specify a name for the report.
● Description: Specify a description for the report.
● Server: Displays the name of the report server on which you are
creating this report.
● Path: Select Browse to specify a folder in which you want to store
the report.
5. On the Summary page of the wizard, review the settings. Select Previous
to change the settings or select Next to create the report.
6. On the Completion page of the wizard, select Close to exit the wizard,
Report Builder now opens where you can configure the report settings.
Enter your user account and password if you are prompted, and then
select OK. If Report Builder is not installed on the computer, you are
prompted to install it. Select Run to install Report Builder, which is required
to modify and create reports.
7. In Microsoft Report Builder, create the report layout, select data in the
available SQL Server views and add parameters to the report, and so on.
For more information about using Report Builder to create a new report,
see the Report Builder Help.
8. Select Run to run your report. Verify that the report provides the
information that you expect. Select Design to return to the Design view to
modify the report, if needed.
 9. Select Save to save the report to the report server. You can run and
modify the new report in the Reports node in the Monitoring workspace.

CHAPTER -4

system center operations manager overview

System Center Operations Manager is a Microsoft management solution

designed to monitor and manage IT infrastructure. It provides real-time
monitoring, proactive issue detection, and automated resolution capabilities for
servers, applications, and services.

The solution offers a unified console for managing multiple environments,

including on-premises, cloud, and hybrid deployments. It provides a
comprehensive view of the entire IT infrastructure, allowing administrators to
quickly identify and resolve issues before they impact end-users.

Some key features of System Center Operations Manager include:

1. Real-time monitoring: The solution provides continuous monitoring of servers,

applications, and services, with real-time alerts for critical issues.

2. Proactive issue detection: It uses advanced analytics and machine learning

algorithms to detect potential issues before they become critical, allowing for
proactive resolution.

3. Automated resolution: The solution offers automated remediation options for

common issues, reducing the need for manual intervention and improving overall
efficiency.

4. Unified console: The console provides a single pane of glass for managing
multiple environments, simplifying administration and reducing complexity.

5. Comprehensive view: The solution offers a comprehensive view of the entire

IT infrastructure, allowing administrators to quickly identify and resolve issues
across multiple systems and services.
6. Cloud support: System Center Operations Manager supports both on-
premises and cloud deployments, including Microsoft Azure and Amazon Web
Services (AWS).

Overall, System Center Operations Manager is a powerful management solution

that helps organizations improve IT efficiency, reduce downtime, and enhance
end-user experience by providing real-time monitoring, proactive issue detection,
and automated resolution capabilities for servers, applications, and services.

SCOM FEATURES AND CAPABILITIES

Sure, here are some specific features and capabilities of System Center
Operations Manager (SCOM):

1. Real-time monitoring: SCOM provides real-time monitoring of servers,

applications, and services. It uses agents to collect performance and availability
data, and sends this data to the management server for analysis.

2. Proactive issue detection: SCOM uses advanced analytics and machine

learning algorithms to detect potential issues before they become critical. It can
identify trends, patterns, and anomalies in the data, and raise alerts when
necessary.

3. Automated resolution: SCOM offers automated remediation options for

common issues, such as restarting a service or rebooting a server. This reduces
the need for manual intervention and improves overall efficiency.

4. Unified console: SCOM provides a single console for managing multiple

environments, including on-premises, cloud, and hybrid deployments. This
simplifies administration and reduces complexity.

5. Comprehensive view: SCOM offers a comprehensive view of the entire IT

infrastructure, allowing administrators to quickly identify and resolve issues
across multiple systems and services. It provides a dashboard with a summary of
the health status of all monitored objects, as well as detailed reports and
analytics.
6. Cloud support: SCOM supports both on-premises and cloud deployments,
including Microsoft Azure and Amazon Web Services (AWS). It can monitor
virtual machines (VMs) running on these platforms, as well as traditional physical
servers.

7. Integration with other Microsoft tools: SCOM integrates with other Microsoft
tools such as System Center Configuration Manager (SCCM), System Center
Virtual Machine Manager (SCVMM), and Azure DevOps Server (formerly known
as Visual Studio Team Services). This allows for a more cohesive management
experience across the entire Microsoft ecosystem.

8. Customizable monitoring: SCOM allows administrators to customize

monitoring settings based on specific business requirements. This includes
defining custom rules, creating custom dashboards, and configuring custom
alerts.

9. Scalability: SCOM is designed to be scalable, with support for large-scale

environments with thousands of monitored objects. It can also handle high
volumes of data and alerts without impacting performance or stability.

10. Security: SCOM provides robust security features such as role-based access
control (RBAC), encryption of sensitive data, and integration with Active Directory
(AD) for authentication and authorization. It also supports secure communication
protocols such as HTTPS and SSL/TLS.