Top 50+ Latest SCCM Interview Questions and Answers

It’s time to look into the Top 50 Latest SCCM Interview Questions. This is my first blog in the HTMD community post. I thought of starting the post with the questions that helped me to understand SCCM better.

These SCCM Interview questions must be treated as SCCM FAQs or Frequently Asked Questions. You will get all the details if you go through the questions and associated links in each question.

I have shared the Top 50 latest interview questions and answers in this post. We have an SCCM Vs. Intune Jobs‘s post in the HTMD community and that post inspired me to share the SCCM question bank with you all to crack SCCM interviews.

SCCM Hands-on experience is mandatory for all the Job assignments. Again I don’t think you can just learn these questions and crack the interviews. You must set up an SCCM LAB and test all these configurations and settings explained below.

Patch My PC
[sibwp_form id=2]

I don’t think you could crack the SCCM interview by just learning the interview questions. This is not the intention of this post or sharing this content with the HTMD community. Refer to Top 50 Latest Intune Interview Questions And Answers.

HTMD Team created a set of video tutorials to get you onboard with SCCM learning. You can refer to Free SCCM Training 37 Hours of the latest technical content from this post. You can also refer to the HTMD community‘s free Intune Training material from the following post – 63 Episodes of free Intune Training Endpoint Manager.

The following is a video review of this post by Anoop and he provided another dimension to the interview questions and tips on cracking the SCCM interview from a technical and non-technical experience.

Top 50 Latest SCCM Interview Questions and Answers

Top 50 Latest SCCM Interview Questions and Answers

Let’s go through the top 50 latest SCCM interview questions & answers in the below section of the post. I hope these questions are helpful. Let us know if you would like to add additional details to each question’s answers.

Adaptiva

What is SCCM?

There is no Microsoft product called SCCM (officially). But many people use the name SCCM to refer to Microsoft Configuration Manager (MCM).

MCM is the product’s official name, previously known as System Center Configuration Manager(aka SCCM). It’s part of Microsoft’s Unified Endpoint Management (UEM) solution.

SCCM is an on-prem device management solution, and Intune is Microsoft’s cloud-based device management solution. According to Microsoft stats, most organizations use SCCM to manage their enterprise devices.

It is commonly used for patch management, software distribution, operating system deployment, hardware & software inventory, and much more.

What is the SCCM Architecture?

SCCM architecture is not an easy topic to explain. But on a very high level, the SCCM has a Server Client based architecture.

You need to setup a server infrastructure for SCCM and then install SCCM client software on the client devices to manage those devices from SCCM.

SCCM server infrastructure follows a Tiered hierarchy a simple example would be:

1. Tier 1 – Standalone Primary Server
2. Tier 2 – Secondary Server
3. Tier 3 – Remote Site Components (MP, DP, SUP)

What are SCCM Sites?

SCCM consists of three sites in its architecture. SCCM sites in this context are SCCM Site Servers. They are as follows:

1. CAS (Central Administration Site) Optional Component: CAS is a top-level site in the SCCM hierarchy. It is an optional site in the SCCM hierarchy. It is required when a number of clients are more than 150000, and there is more than one primary site.

It supports up to 25 child primary sites. Also, it can manage up to 700000 devices in the SCCM hierarchy. It can only be installed on a windows server and requires an SQL server database.
 
2. Primary Site (Mandatory): It is a mandatory site in SCCM. It can support more than 250 secondary sites. It can manage up to 150000 devices. It replicates its data to the CAS site if part of a hierarchy.
 
3. Secondary Site (Optional): It is also an optional site in the SCCM hierarchy. It can only be installed when there is Primary Site. It can support up to 5000 devices.

What are SCCM Site Roles?

There are various SCCM Site Roles, and different SCCM site servers can have different types of Site System Roles.

Avoid mentioning site roles that you can’t explain. The easy and most important ones are MP, DP, and SUP.

1. Management Point (MP)
2. Distribution Point (DP)
3. Software Update Point (SUP)
4. SMS Provider
5. Service Connection Point

Difference between Site System and Site Server Roles in SCCM?

This is again a tricky question from the SCCM interviewer. So the person wanted to know how well you know the SCCM hierarchy.

Start answering the question with examples and then elaborate on each point as discussed in the above questions:

1. Site Servers are -> CAS, Primary Server, and Secondary Server.
2. Site System Servers are -> MP, DP, SUP, etc…

What are the Discovery methods in SCCM?

There are SIX discovery methods in SCCM. This doesn’t include the Azure AD discovery methods that are recently added to the SCCM:

The interviewer might ask to explain some of the discovery methods. So make sure that you are confident in these discovery methods.

Basically, SCCM discovery methods are to discover the devices/objects that you want to use in SCCM. As part of the discovery mechanism, SCCM will create an object for each discovered item in the SCCM SQL DB.

1.      Active directory system group discovery
2.      Active directory security group discovery
3.      Active directory user discovery
4.      Active directory system discovery
5.      Network discovery
6.      Heartbeat discovery

What are the different ways to install SCCM Client?

You need to install clients on discovered systems to manage them. There are different ways to install SCCM clients.

The best method is to install SCCM’s latest client using the Logon Script method or OS deployment. But the best method depends on the organization and environment that you are working on.

1. Client Push Installation
2. SUP based Installation
3. Group Policy based Installation
4. Logon Script Installation
5. Manual Installation
6. Upgrade Installation
7. During OS deployment process
8. Intune client installation method

What is the log file for SCCM client installation on devices? Where is it stored, and what is the exit code for a successful installation?

The log file is ccmsetup.log from the SCCM client logs. The path for the log file is as follows: c:\windows\ccmsetup\.

The exit code (0) means the client installation is successful. The successful installation client doesn’t mean that the client is fully functional.

What are the Inventory Methods available in SCCM?

When the interviewer asks this question, you must be confident enough to answer this correctly. This is a bit tricky question because Microsoft named it a bit differently.

The two types of inventories are as follows:

1. Hardware Inventory: It collects information about the SCCM client’s software and hardware. Software and Hardware configurations are collected using the hardware inventory process.

2. Software Inventory: It collects file-based info from the SCCM client machine. But you don’t need to enable this inventory method to collect the installed application details from the Windows client computer.

Why do we extend Schema in SCCM?

We extend schema so that SCCM can publish info in Active Directory. Once the information is published SCCM client can get the associated MP and DP details from the AD system management container.

Do you want to extend the AD Schema to SCCM to work?

No, it’s not mandatory to extend the AD schema to SCCM to work. But the recommendation is to extend the AD schema to get the full functionality of SCCM.

You can set up other methods like DNS to locate services and site system servers when you don’t use an extended schema. These methods of service location require different configurations and aren’t the preferred method for service location by clients.

What is WSUS?

WSUS is the main component that SCCM uses for patching scenarios. SCCM alone can’t handle the patch deployment without WSUS integration.

WSUS (Windows Server Update Services) allows administrators to deploy Microsoft software updates (patches) to systems.

You can use WSUS as a standalone patching solution or integrate it with SCCM for better features and controls.

WSUS communicates with Microsoft Updates Service and syncs all the available updates into its server.

What is SUP?

SUP is the SCCM site component (site system server). The SUP (Software Update Point) is a component of software updates.

A site system server role in the SCCM helps with the SCCM patching process. The SUP component is tightly integrated with WSUS to provide rich patch management capabilities.

This is the SCCM component that helps the SCCM server to configure WSUS without even opening the WSUS console.

What is SCCM CMG (Cloud Management Gateway)?

SCCM CMG is the Cloud Management Gateway, another site system component that helps to manage internet-connected SCCM client devices without a very complex on-prem setup.

The Clients from the internet can contact the CMG assigned for that client and get the policies and all the other instructions without contacting the on-prem SCCM server infra.

SCCM CMG can also provide application content to the client devices using Cloud DP features available in the CMG.

What are SCCM Collections?

SCCM collection is a group of devices or users so that you can deploy patches, applications, etc., to a group of devices or users.

There are different types of collections. You can’t mix two kinds of resources into one collection. The device collection will only have devices, and the user collection will only have users.

1. User Collection
2. Device Collection

There are different types of device/user collections:

1. Dynamic Collections
2. Static Collections

What is SCCM CMPivot?

The CMPivot is a new in-console and standalone utility in SCCM that now provides access to your environment’s real-time state of devices.

The CMPivot uses KQL queries to get the real-time status from SCCM Online Clients.

What is the SCCM patching procedure (Server Side)?

Microsoft normally releases patches every 2nd Tuesday of the month. The following is a very high-level view of the SCCM patching process.

NOTE! – All deploy patches to the small number of test devices first and confirm whether the devices receive the patch or not. This is the change management process that you need to follow. Once the patch is successfully deployed to those devices, you can deploy it to production devices.

1. WSUS runs the scheduled synchronization to get the metadata from Microsoft Catalogue with the help of WSUS.

2. WSUS connects to the Microsoft Update service to get the data. The SUP gets connected to WSUS and syncs metadata of patches with the SCCM console.

3. Based on the selected products and update categories, the required updates are as per the environment and requirement, you can create an SCCM Software Update Group and patch packages.

4. During the patch package creation process, the patches will be downloaded and stored on the SCCM server.

5. Once downloaded, you can deploy it to a collection of devices.

What is SCCM Cloud Attach?

The Cloud Attach (aka tenant attach) is the option to leverage the combined power of Microsoft Endpoint Manager by connecting SCCM to Intune.

You can sync the device records from SCCM to Intune using the Cloud Attach feature. This feature also allows the management of SCCM clients from Intune portal. This mainly enables helpdesk team profiles to manage SCCM devices.

What is the path for logs at the SCCM server side?

The SCCM Server Logs location is as follows: D:\Program files\Microsoft Configuration Manager\logs. TIP: Don’t install the SCCM server on C Drive.

What is the location for logs at the Client site?

SCCM Client logs Location is as follows: C:\Windows\CCM\logs

Which is the Best SCCM Log File Reader Tool?

There are different SCCM log file reader tools. The one most commonly used is CMTrace.exe.

Onetrace (CMPowerLogViewer.exe) is the latest one that Microsoft is promoting with recent versions of SCCM.

Location of the Log Reader file <Install Directory>\Program Files\Microsoft Configuration Manager\tools\

Name the logs used to verify the Management Point (MP)?

The SCCM MP related logs are as follows: The location of the MP logs varies depending on the other server roles, etc.

1. MP log files at %ProgramFiles%\SMS_CCM\Logs\
2. Or Here %windir%\ccm\logs.

MPsetup.log: This log gives status if MP is installed.
MP-msi.log: MP.msi log is for advanced troubleshooting.
MPcontrol.log: This log checks whether MP works fine and clients can communicate with it.

What is an SMS Provider in SCCM?

The SMS Provider is the SCCM component that helps to establish the connection between WMI and SCCM SQL DB.

The SMS provider is a site system server; you can install it on a remote server. SMS provider functionality is required for SCCM Console connectivity.

How to backup the SCCM server manually?

You can initiate the SCCM manual backup using the following method.

1. Open services.msc
2. Look for the service called sms_site_backup and start this service.

One can also check smsbackup.log for any warnings or errors.

What is SCCM Co-Management?

You can manage Windows 10 or Windows 11 devices simultaneously with SCCM and Intune device management solutions without conflicts. This feature of the Windows operating system is called co-management.

Co-management is dual management (with SCCM and Intune) capability available with Windows 10 1709 version (Fall Creators Update).

Which log file to check when not able to connect hardware inventory?

You can check the Inventoryagent.log on the SCCM client logs.

What to do if the application is not showing in Software Center?

First, check whether the policy is received or not by the client. If the policy is received, then check policy is evaluated or not using the policy evaluator.

You can get the deployment ID and check it with Appenforce.log and App_discovery.log.

Which log file to check for failure in SCCM Task Sequence?

SCCM Task Sequence is used to deploy a group of applications or deploy the Operating System to devices.

1. SMSTS.log is the log file that helps you to get the details of Task Sequence failure.

What to do if the application is stuck at 0% downloading?

1. First, check whether the application is distributed to the DP or not. The log files on the server side – (Dstmgr.log and PkgXferMgr.log)
2. Check whether the client can reach the DP or not. After this, check CAS.log and locationservices.log.

What to do in the case when the application is downloaded and fails during installation?

You need to check the log files related to application deployment from the SCCM side Appenforce.log and App_discovery.log.

Some of the application provides additional app-specific logs in different location. One example is given below. Open the below-mentioned log, and it shows the status why it is getting failed:

C:\ Windows\Temp\Date\Unique ID

What is the SCCM Content Library?

SCCM Content Library is where the content of the applications, patches, and OS images is stored.

Content Library included in SCCM from 2012. It stores everything related to SCCM at the distribution point. The content library does not store duplicate content that is already available.

The Content library consists of three folders:
i) Pkg lib
ii) Data lib
iii) File lib

Which log to check whether content has been added to the Content library (DP) successfully or not, and what is the location of that log?


You will have to check SMSDPPROV.log at remote DP. The location for the same is as follows:

SMSdpprov.log on remote DP (Windows 11 PC) – Location of the log

Drive:\SMS_DP$\sms\logs.

How to Monitor Usage of the SCCM DP?

You can check the SCCM log called SMSdpusage.log on remote DP. This helps to monitor the usage of the DP.

Location of the log Drive:\SMS_DP$\sms\logs.

What are the logs to check on the SCCM Client side for the patching process?

The following is a very high-level view of the SCCM patching process. The logs to check on the SCCM client side are as follows.

a) Policyagent.log
b) Scanagent.log
c) Wuahandler.log
d) Windowsupdate.log (Use PowerShell to enable this logging)
e) Updatedeployment.log
f) Updatestore.log

Which log to check whether a reboot is required for the client or not?

The Rebootcordinator.log is the log that you have to check on the SCCM client logs to check whether the restart is needed for the client or not.

You can also check Wuahandler.log and Updatedeploymen.log for the same.

What are the logs to check on the client side for application deployment?

The logs to check for application deployment at the client side are as follows:

a) Policyagent.log
b) Appdiscovery.log
c) AppIntentEval.log
d) AppEnforce.log

Which log generates DTS Job Id during application deployment?

You can refer to Policyagent.log to check DTS (Data Transfer Service) Job Id from the SCCM Client logs folder. Data Transfer Service (DTS) downloads the application content from DP using BITs.

Where can you get the Content ID details during the SCCM Application Deployment process?

The PkgXMgr.log is the log file (from the DP server side log folder) you must check to get Content Id details.

What are possible scenarios when software is not showing in SCCM Software Center?

If the application is not showing in the SCCM Software Center, then possible cases are as follows:

a) Check if the user or system is in the correct Collection.
b) Check the device’s state, i.e., online or offline.
c) Check the SCCM client connectivity with server/firewall/proxy.

What are some common issues for failed scans during the patching procedure?

There could be many reasons for the scan failures. Some of the most common issues for the same are given below:

a) Wrong Group Policy Configurations 
b) Wrong proxy configuration
c) Firewall Issues
d) Wrong port Configuration
e) Data corruption
f) Windows Update Agent (WUA) version issues

What are the ports used for SCCM Server and Client communication?

The most common ports used for SCCM server and client communication are 80 (HTTP) and 443 (https).

It’s important to understand other Firewall port communications required between SCCM server infra and client devices.

What are the different detection methods during application creation in SCCM?

You have different options for creating an SCCM application detection method. The different detection methods are as follows:

a) File System
b) Registry
c) Windows Installers
d) Custom Detection

What are the Boundaries in SCCM?

SCCM Boundary is a network location available within your enterprise network parameter. There are different types of boundaries, as listed below.

1. Active Directory site name
2. IP subnet
3. IP address range
4. IPv6 Prefix.

What is SCCM client policy?

SCCM client policy is the set of instructions the server sends to the client. Based on those instructions, the SCCM client agent initiates actions at the client’s end.

There are different types of client actions available:

1. Application Deployment Evaluation Cycle
2. Discovery Data Collection Cycle
3. Hardware Inventory
4. Machine Policy Retrieval & Evaluation Cycle
5. Software Updates Deployment Evaluation Cycle
6. Software Updates Scan Cycle
7. User Policy Retrieval & Evaluation Cycle
8. Windows Installer Source List Update Cycle

Why is the use of BITS in SCCM?

Background Intelligence Transfer Service (BITS) transfers the data between the SCCM Server and the client. Data Transfer Service (DTS)

Data Transfer Service downloads the application content by creating a BITS job and waiting for the download to complete.

This BITs activity can be tracked in DataTransferService.log on the client using the DTS Job ID obtained from ContentTransferService.log.

How to Deploy PowerShell Script in SCCM?

You have the option to upload the PowerShell scripts to SCCM and deploy the script using the right-click option from the device collections.

You can create and deploy SCCM PowerShell Script using SCCM run script options. This is the quickest method to deploy fixes without waiting for the client’s policy evaluation cycle.

What is Windows Servicing in SCCM?

Windows servicing is the feature that helps enterprises to upgrade from one version of Windows 10 or Windows 11 to the next version using the Windows Servicing mechanism.

SCCM Windows servicing is the modern way of upgrading Windows 10 or 11 PCs to the latest version of Windows 10 or 11 without using the in-place upgrade (IPU) Task Sequence.

What is SCCM Community Hub?

SCCM Community Hub is the central location within your SCCM console where you can share useful SCCM objects with other admins.

The community hub helps to avoid downloading and creating CMPivot queries, Scripts, Console extensions, and Reports from scratch. Microsoft built a community hub in SCCM where SCCM Admins can share.

What is Maintenance Window in SCCM?

Maintenance windows provide administrators with a way to define a period of time that limits when changes can be made on the systems that are members of a collection.

The maximum duration of maintenance windows is 24 hours; if you have an entire weekend as a maintenance window, you have to create two schedules.

What is BDP?

SCCM BDP is the Branch distribution point. BDP provides an option to avoid full-fledged DP in 100s of remote branch offices.

This helps with package distribution to a small office with limited bandwidth. The Branch DP takes the content from the standard distribution point.

By default, in how much time does the user Group Policy refresh/apply in the background?

Every 90mins User Group Policy is refreshed/applied in the background by itself. You can, however, modify or change this refresh interval time for both users or computers through group policies.

Which inventory collects files from the client machine and database?

Software Inventory collects files from the client machine and database.

Software inventory is collected when you select the Enable software inventory on clients setting in client settings. Software inventory is enabled, and the client runs a software inventory cycle, which sends the information to the client’s management point. Management points forward inventory information to Configuration Manager site servers, which store it in the site database.

Name the site to which clients are directly assigned.

The site to which clients are directly assigned is Primary Site.

What is the ‘All Unknown Computers’ collection?

The All Unknown Computers collection has two objects which represent records in the database. It enables users to deploy OS to their PC that is not managed by a configuration manager.

Name the nodes in SCCM Console which includes the CMG connection analyzer.

Monitoring Node.

What is the primary point of contact between the site server and the configuration manager?

Management Point.

Name the type of discovery method which is enabled by default and provide details about the client installation status.

Heartbeat Discovery. In the hierarchy, heartbeat discovery runs on a schedule configured for each client. Heartbeat discovery is scheduled every seven days by default.

What is the standard size of the client cache?

5120 MB of disk space is the default size of the client cache. However, you can specify the cache folder size using client settings in the Configuration Manager console. And, %windir%/ccmcache is the default location for the Configuration Manager client cache.

Tips and Tricks to Crack SCCM Interview

Let’s see some of the Tips and Tricks to Crack SCCM interviews using SCCM Interview Questions and Answers. In the enterprise world, you always need to test your solutions in pre-production or staging environments first with fewer users.

There should be a ring approach to all the deployments such as application, patch, OS, etc. I recommend starting with a small set of users first, and then everything is ok; then you can proceed with ring-wise production rollout. Only SCCM Interview Questions and Answers will not help you get an SCCM job.

Understanding change management and incident management processes are important for those attending SCCM interviews. Just learning SCCM Interview Questions and Answers alone will not help you.

Check out the ConfigMgr client Co-Management related log file details. This should also be part of the Top 50 Latest SCCM Interview Questions and Answers.

LogDescription
CcmCloud.logCo-Management – CCM_Cloud Client Config
DdrProvider.logCo-Management – MDM enrolment details. SCCM manages records Workloads
ComplRelayAgent.logCo-Management – Records information for the co-management workload for compliance policies
CoManagementHandler.logCo-Management – Use to troubleshoot co-management on the client
Top 50 Latest SCCM Interview Questions and Answers Table 1

Check out the SCCM client Policy related logs in this post section. The policy-related logs and troubleshooting are among the most common SCCM interview questions.

LogDescription
setuppolicyevaluator.logPolicy – Records configuration and inventory policy creation in WMI
PolicyEvaluator.logPolicy – Records details about the evaluation of policies on client computers
PolicyAgentProvider.logPolicy – Records policy changes
PolicyAgent.logPolicy (Content) – Records requests for policies made by using the Data Transfer Service
Top 50 Latest SCCM Interview Questions and Answers Table 2

Author

Abhinav Rana is working as an SCCM Admin. He loves to help the community by sharing his knowledge. He is a BTech graduate in Information Technology.

7 thoughts on “Top 50+ Latest SCCM Interview Questions and Answers”

  1. Please add more scenario based questions, like replication failure, sync issues, managing unknown machines for getting good patching compliance.

    Reply

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.