Welcome to the ThinkDeploy Blog rss#

February 7, 2023
4 min read

Adding Model Friendly Name to Intune Device Notes

As of today, there's still a limitation within the Intune portal to easily find the friendly name of a Lenovo system, i.e. ThinkPad T14 Gen 3. Instead, you're left with the Machine Type Model (21AH).

I'm sure there's a small group of people, if any, that have memorized what every MTM translates to for its respective friendly name.

To make this a bit easier, and with the help of Damien Van Robaeys' blog post, we can use the Graph API to populate the device notes property of an Intune device by matching the Model (aka MTM) to its friendly name.

September 27, 2022
4 min read

Reporting on Update Status, BIOS Level, CVEs, and More

Azure Workbooks Icon

This post will walk through deploying a Remediation script that will collect data from specific Lenovo WMI classes using the HTTP Data Collector API. As a result, the data will be sent to a Log Analytics Workspace in Azure Monitor.

August 10, 2022
2 min read

Correcting the Qualcomm X55 WWAN Excessive Logging Issue

Symptoms

Continuously growing log files generated by the Qualcomm X55 WWAN service. These logs are located under %ProgramData%\Qualcomm® Snapdragon™ X55 5G Modem\SVClog

June 15, 2022
2 min read

Setting an Asset Tag on ThinkPads using Intune Proactive Remediations

Asset Tag Icon

For the unaware, Lenovo provides a Windows Utility to Read and Write Asset ID Information, specifically for ThinkPad. With this utility, you are able to set asset ID data such as an Owner Name, Owner Location, Asset Number and several other pieces of information.

March 16, 2022
4 min read

Using Winget to Install Applications as Part of a Configuration Manager Configuration Baseline

Winget Icon

Brief Background

The future of package management for Windows is Windows Package Manager. This simplifies the installation and management of applications using the winget tool.

March 15, 2022
6 min read

Installing Updates from the Lenovo 3rd Party Catalog in a ConfigMgr Operating System Deployment

In some scenarios, there may be the desire to leverage the Lenovo Updates Catalog to apply applicable updates during an OS deployment task sequence. This article will cover how this might be achieved.

January 25, 2022
3 min read

Automatically Create ConfigMgr Device Collections for Lenovo Products

This is a PowerShell based solution that will query the ConfigMgr database for Lenovo branded products and create a Device Collection based off the friendly name, i.e. ThinkPad T14 Gen 2. Each device will then be moved to its respective collection.

January 5, 2022
3 min read

Revisiting Update Retriever and Azure Blob Storage

This is a follow up to a previous article that walked through hosting an on-prem Update Retriever repository in an Azure Blob Storage.

If you've started leveraging cloud storage for your driver repository, this solution may be of interest to you if you're at a roadblock with how to deploy BIOS updates to your endpoints.

The main focus of this article is a rather hot topic: Silently installing BIOS and firmware updates.

December 8, 2021
4 min read

Configure BIOS Settings Through Intune using the Think BIOS Config Tool

There are numerous articles out in the community that walk through how to configure BIOS settings through Intune. The majority of them being PowerShell solutions.

This post will provide an alternate method for configuring BIOS settings using our official Think BIOS Config HTA that was introduced back in 2016. This solution can also be leveraged as part of an Autopilot deployment.

December 8, 2021
4 min read

ThinkShield Secure Wipe

Logo

Overview

ThinkShield secure wipe is the successor to the ThinkPad Drive Erase Utility and is designed to provide the wipe out function of the SSD.

Note

For more detailed information about ThinkShield Secure Wipe, please see the ThinkShield Secure Wipe Technical Whitepaper

Although the Drive Erase Utility is still supported and provided as an external tool, ThinkShield secure wipe is fully integrated in the BIOS image and does not require any external tools.

Secure wipe can be executed locally by BIOS from the application menu of the Startup Boot Menu invoked by F12 or remotely from OS through the WMI interface, which is what this post will be covering.