First published on CLOUDBLOGS on Jun 20, 2016
Updated 4/5/2018
Starting with Configuration Manger current branch version 1702, the managed installer technology is automatically leveraged by Configuration Manager’s Device Guard policies. When client PCs receive these policies Configuration Manger is automatically configured as a managed installer and apps that it deploys are automatically trusted by locked-down devices. The component that installs and upgrades the Configuration Manager client,
ccmsetup.exe
, is also configured as a managed installer so that the Configuration Manager client can be seamlessly upgraded on locked-down devices.
For additional information, please read
Device Guard Management with Configuration Manager
.
