Blog Post

Configuration Manager Blog
3 MIN READ

Configuration Manager technical preview version 2401

Bala_Delli's avatar
Bala_Delli
Former Employee
Jan 30, 2024

 

 

Automated diagnostic Dashboard for Software Update Issues

 

A new dashboard is added to the console under monitoring workspace which shows the diagnosis of the software update issues in your environment. You can fix software update issues based on CM troubleshooting documentation.

 

 

 

Support for ARM64 Operating System Deployment

 

Configuration Manager now extends its operating system deployment capabilities to Windows 11 ARM64 devices. This includes the integration of features such as boot image import, driver import, and pull distribution point, enhancing the deployment experience in addition to the existing 2311tp feature.

 

Introducing Centralized Search box: Effortlessly Find What You Need in the Console!

 

Users can now use the global search box in CM console which streamlines the search experience and centralizes access to information. This enhances the overall usability, productivity and effectiveness of CM. Users no longer need to navigate through multiple nodes or sections/ folders to find information they require, saving valuable time and effort.

 

 

Microsoft Azure Active Directory rebranded to Microsoft Entra ID

 

Starting Configuration Manager version 2403, Microsoft Azure Active Directory is renamed to Microsoft Entra ID within Configuration Manager.

 

Enhancement in Deploying Software Packages with Dynamic Variables

 

With the introduction of retry count in UI administrators while deploying the "Install Software Package" via Dynamic variable with "Continue on error" unchecked to clients, won't be notified with task sequence failures even if package versions on the distribution point are updated.

 

 

 

Enabling Auto-Image Patching for CMG Virtual Machine Scale Set

 

With this version of CM Configuration Manager Cloud Management Gateway (CMG) Virtual Machine Scale introduces enabling of Auto-Image Patching for seamless and automated updates to ensure your environment stays current and secure with this efficient solution.

 

Window 11 Readiness dashboard to support Windows 23H2

 

With this version of Configuration Manager, the Windows 11 readiness dashboard will show charts for Windows 23H2.

 

 

HTTPS or Enhanced HTTP should be enabled for client communication from this version of Configuration Manager

 

HTTP-only communication is deprecated, and support is removed from this version of Configuration Manager. Please enable HTTPS or Enhanced HTTP for client communication.

 

 

 

Upgrade to CM 2403 is blocked if CMG V1 is running as a cloud service (classic)

 

The option to upgrade Configuration Manager 2403 is blocked if you're running cloud management gateway V1 (CMG) as a cloud service (classic).All CMG deployments should use a virtual machine scale set.

 

Windows Server 2012/2012 R2 operating system site system roles aren't supported from this version of Configuration Manager

 

Starting 2403, Windows Server 2012/2012 R2 operating system site system roles aren't supported in any CB releases.

 

Improvements to Bitlocker

 

This release includes the following improvements to Bitlocker:

 

  • Based on your feedback, this feature ensures proper verification of key escrow and prevents message drops. We now validate whether the key is successfully escrowed to the database, and only on successful escrow we add the key protector.
  • This feature prevents a potential data loss scenario where BitLocker is protecting the volumes with keys that are never backed up to the database, in any failures to escrow happens.

 

Known issue

 

Upgrading from TP 2311 to 2401, you will not be able to upgrade If Resource access slider is already in Intune. This is a regression caused from previous TP, please move any other slider (Apps/ End point) to CM or Intune then choose to apply --> Ok. After this try upgrading the site to TP 2401 once done you can revert back (Apps/ End point) to old settings. This is already fixed in our code.

 

 

Update 2401 for Technical Preview Branch is available in the Microsoft Configuration Manager Technical Preview console. For new installations, the 2401 baseline version of Microsoft Configuration Manager Technical Preview Branch is available on the link:  CM2401TP-Baseline or from Eval center 

 

Technical Preview Branch releases give you an opportunity to try out new Configuration Manager features in a test environment before they are made generally available.

 

We would love to hear your thoughts about the latest Technical Preview! Send us feedback directly from the console.

 

Thanks,

The Configuration Manager team

 

Configuration Manager Resources:

Documentation for Configuration Manager Technical Previews

Try the Configuration Manager Technical Preview Branch

Documentation for Configuration Manager

Configuration Manager Forums

Configuration Manager Support

Updated Feb 07, 2024
Version 5.0
Application Management
CM technical preview
os deployment

6 Comments

Sort By
  • Ickis99's avatar
    Ickis99
    Copper Contributor
    Apr 10, 2024

    @Bala_Delli So, if the CMG Auto-Patching is not included in 2403, what is the correct way to update the image manually? By creating a new CMG and removing the old one? I started getting requests because of the advisor recommendations (VMSS in your subscription are running on images that have been scheduled for deprecation).

     

    Thank you.

  • Ronan_Fahy's avatar
    Ronan_Fahy
    Brass Contributor
    Mar 11, 2024

    Bala_Delli  There's no reboot required but it's being interpreted as such because there are i presume locked files needing updates presumably because it's setting that reg key you mentioned and there's no distinguishing between "close the app" and "reboot the system". Once the user closes and reopens office the updates take effect but if a reboot has been prompted for already, the user may go and do it anyway.

     

    I suspect this is more of an office thing than an SCCM thing but since you have the O365 update integration and ADRs it would be nice to have some facility to suppress it somehow. For example if we could see the update in software centre, but have it show a status of reboot required but not actually pop up a notification saying that, that would be a good compromise. I.e. if user goes looking into software centre and nosing around they would see a spurious "please reboot" but it wouldn't actually prompt for one interactively through the normal software centre toast / popup notifications.

     

    Co-management requires Azure Hybrid registration right? Which happens at system / machine level. So when we use proxies, which we do, this goes looking for a system level proxy. Which is fine and all, except setting a system level proxy then went and broke WiFi captive portals etc. because they went trying to find our proxy before they'd actually connected to our DirectAccess.  So we abandoned any plan to softly move into a hybrid joined world I'm afraid.

     

    On another semi-related topic in the sense that it's SCCM related but probably not SCCM's fault.....have just discovered we can't offline service Windows 11 images anymore using SCCM, because of the switch to UUPs? I've seen elsewhere that the recommendation is to just download updated ISOs every month but for orgs like ours where we still customise the image to do things like zap store apps and add language packs and so on, this isn't a runner. Any plan for this much needed automation facility to return?

     

  • Bala_Delli's avatar
    Bala_Delli
    Former Employee
    Mar 10, 2024

    lexcyn - Yes, this is tested and it will work. We can install CM console on Win 11 Arm device.

    sutliff1805 - Yes, CMG VMSS has an option to Auto update the image. But we might revert this change in CB as we found few regression.

    Ronan_Fahy - This seems to be by design behavior as  some of the application requires reboot so it checks the registry key and notify the same. Lets take this feedback and check what enhancement can be made. Can you move towards Co-management and this behavior will not be observed.

     

  • lexcyn's avatar
    lexcyn
    Iron Contributor
    Mar 05, 2024

    Will the Configuration Manager Console install and run on a Windows 11 ARM device as well? Or does it at least have emulation support?

  • Ronan_Fahy's avatar
    Ronan_Fahy
    Brass Contributor
    Feb 28, 2024

    Off topic but an SCCM question. Office 365 updates via SCCM, using ADRs, work great. However, software centre prompts the user to restart their PC afterwards, which isn't required with office. Conventional wisdom based on multiple blogs etc, would say the solution is to set the deployment's user experience settings to "hide in software center and hide all notifications". That has the desired effect of stopping the reboot prompt BUT it means there's no visual indicator in Software Center of the status of the update, or even anything to indicate whether the device even sees the update. So without trawling logs it's not possible to see if the update wasn't found as available, tried and failed, is waiting for something etc.  Has any thought been given to a middle ground option. e.g. "show in software centre, don't show any notifications" or something. Incidentally the relatively recent "enable update notifications from microsoft 365 apps" has no effect on this behaviour as these are software centre level restart prompts, not office.

  • sutliff1805's avatar
    sutliff1805
    Copper Contributor
    Feb 27, 2024

    Can you elaborate on "Enabling Auto-Image Patching for CMG Virtual Machine Scale Set"

    I do not understand - is this saying the CMG VMSS itself is being auto-updated?  What image is being auto-updated?

     

    As for "Automated diagnostic Dashboard for Software Update Issues", I look forward to that!  There are so many reasons an error can be created (power down during scan or lost network connection) that hopefully this can fix or help fix the real errors.