John Martynuk CCSP CGRC CISA CISM CISSP on LinkedIn: Site Takeover via SCCM’s AdminService API (2024)

SCCM Site takeover by abusing the AdminService API. In this blog, I walkthrough the discovery process and demonstrate site takeover via credential relaying.https://lnkd.in/g9DUpz7V

93

Check this out if you use SCCM

3

Learn how to Fix Win32 Error 121 on #SCCM #ConfigMgr Distribution Point Server - https://lnkd.in/gjhsNRMw

38

Upgrading from SCCM Current Branch 2303 to 2403 requires careful planning to minimize downtime and ensure a smooth transition.# Preliminary Checks1. *Review the Release Notes* - Understand the new features and changes in #SCCM Current #Branch 2403. Note any deprecated features, new hardware/software requirements, and other critical changes.2. *Check System Requirements* Ensure your current hardware operating system, #database, and network configuration meet or exceed the requirements for SCCM 2403.3. *Backup Your SCCM Environment* Perform a full #backup of the SCCM site database, site server, and other critical data.This ensures you can recover if anything goes wrong during the upgrade.4. *Check the Version of #SQL Server* Verify that your SQL Server version is compatible with SCCM 2403. Upgrade if necessary.5. *Ensure User Permissions* - Confirm that you have administrative permissions for the SCCM site server and SQL Server.6. *Review Customizations* - Document any custom scripts, reports, or other configurations. Understand how the #upgrade might affect these.7. *Evaluate Client Versions* - Ensure that your SCCM clients are at a version that supports upgrade to 2403.# Pre-Upgrade #Tasks8. *Check for Prerequisite Updates* - Install any prerequisite updates required for SCCM 2403.9. *Review Windows Updates* - Ensure that your #Windows Server and client machines are fully updated.10. *Ensure Enough Disk Space* - Confirm there is sufficient disk space for the upgrade.11. *Disable Third-Party Software* - Temporarily disable antivirus or other third-party #software that might interfere with the upgrade.# Perform the Upgrade12. *Download the SCCM Update* - Access the "Updates and Servicing" node in SCCM and check for updates. Download the update for 2403.13. *Start the Update* - Once the update is downloaded, start the installation #process from the SCCM console. Monitor the process for any errors.14. *Verify the Upgrade* - After the update is completed, check the #SCCM console to ensure everything is working as expected.15. *Check Client Updates* - Deploy the client #update to ensure all clients are upgraded to the latest version.# Post-Upgrade Tasks16. *Validate Functionality* Test #critical functionalities, including software distribution, OS deployment, software updates, and reporting.17. *Check for Errors or Alerts* Review the SCCM logs and console for any errors or warnings.18. *Re-enable Third-Party Software* - Once the upgrade is confirmed as #successful, re-enable any #software you had disabled earlier.19. *Backup Again* - After the upgrade is complete and verified, take another #backup to capture the new configuration.20. *Document the Upgrade* - Record the upgrade process, including any issues encountered and their #resolution.If you encounter issues, consider reaching out to #Microsoft #Support for further assistance.

41

3 Comments

What is Active Directory Migration : A Comprehensive Guide for Seamless transition Active Directory aka Windows Active Directory ( AD )is offered by Microsoft and is Microsoft'sproprietary directory service . To simplify for better understanding , an Active Directory is a hierarchical structure that stores data and information as objects , on the respective network...https://zurl.co/DoDE

4

What is Active Directory Migration: A Comprehensive Guide for Seamless Transition Active Directory aka Windows Active Directory (AD) is offered by Microsoft and is Microsoft’s proprietary directory service. To simplify for better understanding, an Active Directory is a hierarchical structure that stores data and information as objects, on the respective network...https://zurl.co/maYn

6

What is Active Directory Migration : A Comprehensive Guide for Seamless transition Active Directory aka Windows Active Directory ( AD )is offered by Microsoft and is Microsoft'sproprietary directory service . To simplify for better understanding , an Active Directory is a hierarchical structure that stores data and information as objects , on the respective network...https://zurl.co/DoDE

1

The vision behind WAM is to help make the lives and work of IT professionals just like you simpler. 👨💻 That's why it performs all the necessary tasks that a WSUS Admin would have to do to properly maintain their environment. Try WAM today and see how it simplifies things for you! 👍#WSUS #Server #Automation #IT

What is Active Directory Migration: A Comprehensive Guide for Seamless Transition Active Directory aka Windows Active Directory (AD) is offered by Microsoft and is Microsoft’s proprietary directory service. To simplify for better understanding, an Active Directory is a hierarchical structure that stores data and information as objects, on the respective network...https://zurl.co/QeFy

5

SCCMHunter by Garrett F. from SpecterOps"SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain." New version (v 0.0.2):Support for performing administrative tasks via the Administration Service API : - "Interactive" CLI to execute commands- Run situational awareness like tasks against devices such as querying local administrators or checking running processes- Create and run scripts against devices that self delete from the device and from the SCCM database- Add/Remove admin users- Backdoor/restore CMPivot script for persistence

2