Windows Certificate Authorities: distributing new client certificates via SCCM

We’ve recently migrated (side-by-side) to a new Active-Directory (AD) integrated root Certificate Authority (offline) with an intermediate issuing CA. Now while AD should take care of things like distribution of the CA certificates to the clients so they know who to trust, there still remains the issue of the certificates of the clients themselves.Specifically, certificates […]

SCCM 2012 agent reboots when MSIEXEC uses REALLYSUPPRESS switch

I recently discovered some rather worrying behaviour in SCCM 2012 SP1 regarding how the CM agent handles return codes from msiexec. If you pass the /REALLYSUPPRESS switch to msixec then that means that if msixec determines that the installation needs a reboot (for example, if a required file was in use during the install/upgrade) then […]