We have the GPO solution and no https to the SUP. We are using a selfsigned cert right now but that will change soon.
Everything is running fine and the software is installing as we hoped.
The issue here is that we cannot rebuild (OSD) a machine without getting the 0x800b0109 error as its not trusted during the OSD fase. We have several steps "Check for Updates" and it does its job and finds the 3rd party patches but cannot install them and fails.
How would be the clever way to inject the cert during OSD?
Should we modify our TS to inject the cert or is there another way instead?