WSUS on S2012 installs with WID, even when it is de selected

With the GUI /Server Manager Roles and features: When you install WSUS on server 2012 and you want to make use of SQL for the Database and de-select WID it just installs the WID services!!

Check this article for de-install of WID

When you install it with the commandline syntax WID everything is fine.

Install-WindowsFeature -Name UpdateServices-Services,UpdateServices-DB –IncludeManagementTools

PS C:\Program Files\Update Services\Tools> .\wsusutil.exe postinstall SQL_INSTANCE_NAME=<servername\instancename> CONTENT_DIR=<path_to_content>

When WSUS doesnt work follow this article. Post install log gives the following error: 2014-08-19 16:24:36  CreateDefaultSubscription failed. Exception: System.Net.WebException: The request failed with HTTP status 503: Service Unavailable.

OR just follow this:

– Remove WSUS Administration in IIS.

– Start .\WsusUtil.exe postinstall.


All credits to Jorn. 🙂


SCCM primary site server high IOPS

Last week i was monitoring the SAN storage with VNX Monitoring and Reporting. I saw around 7000 IOPS coming from one LUN. I changed the period to 3 months and saw from on one day the IOPS raise from around 200 IOPS to 7000 IOPS! WOW!! Looked in to VMWare vCenter and nearowed it down to the SCCM primary site server. Started performance monitor and most IOPS did come from the partitition where SCCM is installed. After that i started PROCMON on the SCCM server and used file summary to analyse what did cause the IOPS.

A lot of file events or coming from \inboxes\\outboxes\LAN  folder. I checked the  \inboxes\\ and there are a lot of .JOB files. In the \outboxes\LAN folder contained a lot of SRQ and SRS files. After that i checked the log files Sender.log and schedule.log and found a lot of information about intersite replication occuring from the primary site to the secondary sites. Most secondary sites are offline but there were a lot of jobs for the secondary sites. I had the feeling this was messing up my primary site and did cause a lot of IOPS.  Did some searches on google and the following was the resolution.

1. Stop all SCCM services on the SCCM server

2. Start CMD as Admin and go to <driveletter>:\<program files>\Microsoft Configuration Manager\bin\i3860000409 

3. Delete jobs with the following command. Preinst.exe /deljob <sitecode>.( Sidecode is the site that is offline and causing the issues. after deleting the site 2700 jobs were deleted!)

4. Deleted all old SRQ and SRS files from the  \outboxes\LAN and Requests folder.

5.  Start all SCCM services.

After this IOPS went fromt 7000 IPS  to 200 IOPS! This is the expected behaviour! 🙂



Extend AD SCHEMA for SCCM (2012R2)

– Log in to the DC.
– Browse to the ISO of SCMM.
– Run configmgr2012R2\smssetup\bin\x64\extadsch.exe.
– C:\extadsch.log is the place of the extend logfile.
– Start ADSIEdit.
– Add container in the System container. Value: System Management.
– Open AD Users and computers(dsa.msc)
– Select advanced view
– Browse to system/System Management
– Go to properties of System Management
– Add computer account of Primary Site server(s). Full control. This object and al descendant objetcs

Ready for Primary site installation 🙂

SCCM Client Scan actions

SCCM Client Force Full Scan on Next schedule
Hardware Inventory
WMIC /namespace:\\root\ccm\invagt path inventoryActionStatus where InventoryActionID=”{00000000-0000-0000-0000-000000000001}” DELETE /NOINTERACTIVE

Software Inventory
WMIC /namespace:\\root\ccm\invagt path inventoryActionStatus where InventoryActionID=”{00000000-0000-0000-0000-000000000002}” DELETE /NOINTERACTIVE

Update scan
WMIC /namespace:\\root\ccm\invagt path inventoryActionStatus where InventoryActionID=”{00000000-0000-0000-0000-000000000113}” DELETE /NOINTERACTIVE

 Trigger Update scan:

WMIC /namespace:\\root\ccm path sms_client CALL TriggerSchedule “{00000000-0000-0000-0000-000000000113}” /NOINTERACTIVE

Trigger Hardware Inventory:
WMIC /namespace:\\root\ccm path sms_client CALL TriggerSchedule “{00000000-0000-0000-0000-000000000001}” /NOINTERACTIVE

Trigger Software Inventory:
WMIC /namespace:\\root\ccm path sms_client CALL TriggerSchedule “{00000000-0000-0000-0000-000000000002}” /NOINTERACTIVE

{00000000-0000-0000-0000-000000000001} Hardware Inventory
{00000000-0000-0000-0000-000000000002} Software Inventory
{00000000-0000-0000-0000-000000000003} Discovery Inventory
{00000000-0000-0000-0000-000000000010} File Collection
{00000000-0000-0000-0000-000000000011} IDMIF Collection
{00000000-0000-0000-0000-000000000012} Client Machine Authentication
{00000000-0000-0000-0000-000000000021} Request Machine Assignments
{00000000-0000-0000-0000-000000000022} Evaluate Machine Policies
{00000000-0000-0000-0000-000000000023} Refresh Default MP Task
{00000000-0000-0000-0000-000000000024} LS (Location Service) Refresh Locations Task
{00000000-0000-0000-0000-000000000025} LS (Location Service) Timeout Refresh Task
{00000000-0000-0000-0000-000000000026} Policy Agent Request Assignment (User)
{00000000-0000-0000-0000-000000000027} Policy Agent Evaluate Assignment (User)
{00000000-0000-0000-0000-000000000031} Software Metering Generating Usage Report
{00000000-0000-0000-0000-000000000032} Source Update Message
{00000000-0000-0000-0000-000000000037} Clearing proxy settings cache
{00000000-0000-0000-0000-000000000040} Machine Policy Agent Cleanup
{00000000-0000-0000-0000-000000000041} User Policy Agent Cleanup
{00000000-0000-0000-0000-000000000042} Policy Agent Validate Machine Policy / Assignment
{00000000-0000-0000-0000-000000000043} Policy Agent Validate User Policy / Assignment
{00000000-0000-0000-0000-000000000051} Retrying/Refreshing certificates in AD on MP
{00000000-0000-0000-0000-000000000061} Peer DP Status reporting
{00000000-0000-0000-0000-000000000062} Peer DP Pending package check schedule
{00000000-0000-0000-0000-000000000063} SUM Updates install schedule
{00000000-0000-0000-0000-000000000071} NAP action
{00000000-0000-0000-0000-000000000101} Hardware Inventory Collection Cycle
{00000000-0000-0000-0000-000000000102} Software Inventory Collection Cycle
{00000000-0000-0000-0000-000000000103} Discovery Data Collection Cycle
{00000000-0000-0000-0000-000000000104} File Collection Cycle
{00000000-0000-0000-0000-000000000105} IDMIF Collection Cycle
{00000000-0000-0000-0000-000000000106} Software Metering Usage Report Cycle
{00000000-0000-0000-0000-000000000107} Windows Installer Source List Update Cycle
{00000000-0000-0000-0000-000000000108} Software Updates Assignments Evaluation Cycle
{00000000-0000-0000-0000-000000000109} Branch Distribution Point Maintenance Task
{00000000-0000-0000-0000-000000000110} DCM policy
{00000000-0000-0000-0000-000000000111} Send Unsent State Message
{00000000-0000-0000-0000-000000000112} State System policy cache cleanout
{00000000-0000-0000-0000-000000000113} Scan by Update Source
{00000000-0000-0000-0000-000000000114} Update Store Policy
{00000000-0000-0000-0000-000000000115} State system policy bulk send high
{00000000-0000-0000-0000-000000000116} State system policy bulk send low
{00000000-0000-0000-0000-000000000120} AMT Status Check Policy
{00000000-0000-0000-0000-000000000121} Application manager policy action
{00000000-0000-0000-0000-000000000122} Application manager user policy action
{00000000-0000-0000-0000-000000000123} Application manager global evaluation action
{00000000-0000-0000-0000-000000000131} Power management start summarizer
{00000000-0000-0000-0000-000000000221} Endpoint deployment reevaluate
{00000000-0000-0000-0000-000000000222} Endpoint AM policy reevaluate
{00000000-0000-0000-0000-000000000223} External event detection

Edit Hkey_Current_User keys

Create te following steps for editing the Hkey_current_user. For example, this could be used in a Task Sequence in Config Manager.

User is not logged on to the client:

Load Hive
reg.exe load HKU\temphive c:\users\\ntuser.dat
Edit Registry
reg.exe add “HKU\temphive\Control Panel\Desktop” /v ScreenSaveActive /t REG_SZ /d 0 /f
Unload Hive
reg.exe unload HKU\temphive

User is logged on to the client

Use PSGETSID.EXE from sysinternals suite.


echo off

:: ——–
:: Turn off Echo

:: Variabable “uSID” to store UserSID
set uSID=

::Get SID and store in uSID
for /F “usebackq delims== skip=1” %%i in (`psgetsid.exe -accepteula User`) do set uSID=%%i

:: SID to screen
echo uSID=%uSID%

:: Set registry path to _key
set _KEY= HKU\%uSID%\AppEvents\Schemes\Apps\.Default\SystemAsterisk\.Current
echo _KEY=%_KEY%

:: Delete default value
Reg delete “%_KEY%” /ve /f


:: ———