Quantcast
Channel: WSUS forum
Viewing all 12874 articles
Browse latest View live

WSUS Server Event ID 364 "Reason: Server did not return the file size" - only one/two updates affected

January 11, 2017, 11:40 am
$
0
0

A Win 2008 Server running WSUS is unable to download two particular updates from Microsoft.  The reason given for the attempt is as follows: 

Content file download failed. Reason: The server did not return the file size. The URL might point to dynamic content. The Content-Length header is not available in the server's HTTP reply.
 Source File: /c/msdownload/update/software/secu/2017/01/windows6.1-kb3212646-x64_e5f58eb8610b9fdc024628c97e1890a87fff06e3.cab Destination File: d:\WSUS\WsusContent\E3\E5F58EB8610B9FDC024628C97E1890A87FFF06E3.cab.

Some more details: 

  • Server 2008 box with WSUS 3 SP2
  • Other files are able to be downloaded - just these two are affected (KB3212646 Win7 32bit and 64bit versions - January, 2017 Security Monthly Quality Rollup for Windows 7)
  • Also getting a "Server Synchronization Web Service is not working" Event ID 12032 as well. 
  • Have plenty of free space on all drives
  • Don't believe there are any changes to the network/firewall setup but I don't control that bit.
  • I have tried declining these patches, performing a Server Cleanup Wizard and then re-approving them but afterwards it gives the same results. 
  • Recently did the WSUSIndex.vbs maintenance script and a Server restart were performed but no difference.
  • Setting BITS to Foreground mode and restarting the update service gave the same symptoms
  • Tried importing updates from microsoft update catalog but it didn't show any difference. 

What's next?

Search

fatal error wsuspool does not exists

January 12, 2017, 7:43 am
$
0
0

Hi

I install new vm win2012 r2 server with WSUS rule

and when the rule installation finish I  open the wsus and start configuration  and I get this error in the post installation "Post install is starting Fatal Error: WsusPool does not exist "

I try to remove the rule and install again and- the error still occurred

I try to change location  and give full permission -the error still occurred

I try to install all update that I found in windows update-the error still occurred

with this log , I can`t figure way its happened and how to fix it

2017-01-12 16:35:54  The module 'spGetComputerTargetGroupEx' depends on the missing object 'dbo.spDeleteComputer'. The module will still be created; however, it cannot run successfully until the object exists.
2017-01-12 16:35:54  The module 'spGetComputerTargetGroupEx' depends on the missing object 'dbo.spMarkComputerAsNeedingDetailedRollup'. The module will still be created; however, it cannot run successfully until the object exists.
2017-01-12 16:35:54  The module 'spGetComputerTargetGroupEx' depends on the missing object 'dbo.spMarkComputerAsNeedingDetailedRollup'. The module will still be created; however, it cannot run successfully until the object exists.

2017-01-12 16:39:26  Configuring website on port 8530
2017-01-12 16:39:46  System.InvalidOperationException: WsusPool does not exist
   at Microsoft.UpdateServices.Administration.UseCustomWebSite.GetWsusPool()
   at Microsoft.UpdateServices.Administration.UseCustomWebSite.InstallAndConfigure(IisConfiguration& iisConfiguration, Int32 newPortNumber)
   at Microsoft.UpdateServices.Administration.PostInstall.ConfigureWebsite(Int32 portNumber)
   at Microsoft.UpdateServices.Administration.PostInstall.Run()
   at Microsoft.UpdateServices.Administration.PostInstall.Execute(String[] arguments)

Windows Auto Update is turning itself back on.

June 13, 2013, 6:39 pm
$
0
0
We have multiple Windows servers and sometimes after we have ran Windows updates on them we find that some of them change there update settings from Turn Off Automatic Updates to Automatic.  What is the recommended method for making sure that the Auto updates are turned off.

WSUS clients updated on hold status

January 9, 2017, 11:24 pm
$
0
0

Hi all, I've set up WSUS in company AD, computers within AD received update patches from WSUS server. However, most computers could not received all download patches from WSUS, the received % kept unchanged more than 30 days, but such computers could feedback status to WSUS servers normally

Another problem...some computers already online status, but WSUS server could not receive their status feedback... how to ensure connection between clients and WSUS server work probably?

kb932349 ms08-070 description doesn't match product

January 16, 2017, 2:42 am
$
0
0

A recent scan of some of our systems has highlighted that they need kb932349 vb6 runtime extended files. This is MS08-070. However when I look at the articlehttps://technet.microsoft.com/library/security/ms08-070 it does not reference any product installed on the affected devices.

As this is not in the Catalog either I'm not sure how I can properly patch and secure the affected devices. Can anyone help?

IE11 security updates issue not installing via WSUS

January 16, 2017, 3:21 am
$
0
0

Hi All,

A number of servers (win2008 R2) have IE11 (11.0.9600.17843) installed with a very old IE11 security update installed as shown below:

WSUS shows that the server requires 27 updates (25 of these are IE11 security updates):

But when I go to check WU on the client server it only shows the 2 Windows Server 2008 security updates. Why are the IE11 security updates missing?

Any help appreciated - Im on WSUS version 6.2.

Thanks

Richard

windows 10 anniversary update issues

January 16, 2017, 6:36 am
$
0
0

Team,

When windows 10 anniversary patches push through wsus server 2012 r2, we are facing the below mentioned issue

Feature update to Windows 10 Pro, version 1607, en-us - Error 0xc1800118

Feature update to Windows 10, version 1607 - Error 0x8024200d

Tried Workarounds

  • Install update 3159706 to enable decryption
  • Disable the “Upgrades” classification
  • Delete the previously synched upgrades
  • Enable the “Upgrades” classification
  • Perform a full sync stand-alone WSUS

 

 

Note: Please let me know the KB number to install manually if available

The WSUS Content Directory is not accessible

June 24, 2014, 4:43 pm
$
0
0

Single Primary Site running SCCM 2012 R2 on Windows Server 2012 R2.

WSUS on same server using Ports Http: 8530 and HTTPS: 8531 and is using SUSDB as database.

No Proxy in place.

Everything was working and issue started last week. No changes were made.

We get following WSUS errors 

System.net.webException: The request failed with HTTP status 503: Sevice Unavailable~~~ Failures reported during periodic health check by the WSUS server. will retry check in 1 mins

I then ran the WSUSutil.exe checkhealth command and in event viewer, get a few different errors:

Event ID 13042: Self-update is not working.

Event ID 10021: The catalog was last synchronized successfully 1 or more days ago.

Event ID 12002: The Reporting Web Service is not working.

Event ID 12012: The API Remoting Web Service is not working.

Event ID 12032: The Server Synchronization Web Service is not working.

Event ID 12022: The Client Web Service is not working.

Event ID 12042: The SimpleAuth Web Service is not working.

Event ID 12052: The DSS Authentication Web Service is not working.

Event ID 12072: The WSUS content directory is not accessible.

System.Net.WebException: The remote server returned an error: (503) Server Unavailable.

   at System.Net.HttpWebRequest.GetResponse()

   at Microsoft.UpdateServices.Internal.HealthMonitoring.HmtWebServices.CheckContentDirWebAccess(EventLoggingType type, HealthEventLogger logger)

Please suggest.
Search

remote wsus console display not the same as local console on server

January 16, 2017, 8:48 am
$
0
0

I patch my windows 2012 R2 server for corrected the wsus display for the windows 10. And on my server everything is display correctly.

But on my remote console (4 pc) the result wasn't ok. The windows 10 is displayed as winndows vista or windows 8.1 as windows 6.3 or something like that

I lost something for sure.

I disconnect the remote console end reconnect this on without a result

So maybe someone had a some trick for me

Steve

steve.vibert@urgences-sante.qc.ca

   

steve.vibert@urgences-sante.qc.ca

no Server 2012 updates from las Tu

January 16, 2017, 11:28 am
$
0
0

The question:

why I don't see any for Server 2012 (that usually are there, sure I have bunch of 2012).

Sorry the image taken is too small  (sometimes it happens on forum site).

Please zoom to see

Thx.

--- When you hit a wrong note its the next note that makes it good or bad. --- Miles Davis



WSUS Server 2012 to 2016

January 16, 2017, 11:02 am
$
0
0

So I may have done something daft, I did a in place server upgrade from 2012 to 2016 upgrading WSUS along the way to 10.0.14393.0.

Now nothing seems broken and its working as it should (no event error etc) but I'm nervous, what should I look out for and what can I check to take away the doubt?

Should note its not the end of world if I need to restore from backup or even bin the server and start again.

Win10 clients not reporting status

January 16, 2017, 11:46 am
$
0
0

We have a regular issue with Win10 client machines not reporting status to the WSUS server for days and sometimes weeks at a time when they are in fact on the network. The Windows Update service has been determined to be running on the clients. Is there a troubleshooting document I can reference re: this issue? We are running WSUS 6.3.9600.18324 on Windows Server 2012 R2.

Thanks

Hank Vare

Clients are going out on the internet for update

December 8, 2016, 1:58 am
$
0
0

Hello everyone,

I am running into an issue, I have a WSUS server setup on W2008 server and some times client computers are going out on the internet and that is consuming my lot of internet bandwidth. It almost works fine and after almost every month I face this problem once/twice. Could you guys please help me out to solve the issue?

Troubleshooting done so far:

1. Crossed checked through rsop.msc that policy has been applied on the computers.

2. Crossed checked that all the option on the my computer settings are showing up as per configured on the WSUS GPO.

WSUS, Patch Management, Server Manager , Server 2008 R2, SoftwareDistribution.log,

January 9, 2017, 11:53 pm
$
0
0

Hi,

I am trying to read SoftwareDistribution.log in server WSUS 2008 R2.

%systemroot%Program Files\Update Services\LogFiles/SoftwareDistribution.log but i don't know how to read. So Request you all to understand me the log file and what is the use of SoftwareDistriution.log file.


WSUS 2012R2 server does not appear to be using BITS

January 11, 2017, 4:12 am
$
0
0
We have noticed our WSUS server is having a high impact on our LAN performance, on investigation It looks to me like connections to our WSUS server are going over normal HTTP/IIS and not through BITS.

When I look at the BITS queue in powershell it is empty, yet resource manager shows many clients connected and downloading from IIS

The only way we can improve performance on our LAN is to restrict the bandwidth used by the IIS site

Is this the same for other people running a 2012R2 Wsus server, is your BITS queue empty ?


Search

Some windows 10 cannot get windows update from Windows 2012 R2 WSUS

January 17, 2017, 1:28 am
$
0
0

Our client PC all get windows update from WSUS server (server 2012 R2 Standard), recently, some of windows 10 clients (build 1511 and 1607) can not get update from WSUS server, the windows update log as below.

2016/12/23 15:07:54.7134302 496   7452  ComApi          * START *   SLS Discovery
2016/12/23 15:07:54.7143422 496   7452  ComApi          *QUEUED* SLS Discovery
2016/12/23 15:07:54.7146990 496   6324  ComApi          *RESUMED* Discovery
2016/12/23 15:07:54.7147004 496   6324  ComApi          Exit code = 0x00000000, Result code = 0x8024500C
2016/12/23 15:07:54.7147007 496   6324  Api             * END *   Discovery ClientId
2016/12/23 15:07:54.7156135 496   7452  ComApi          ISusInternal:: DisconnectCall failed, hr=8024000C
2016/12/23 15:07:54.7163071 496   7452  ComApi          Unable to get SLS chunk. (hr=8024500C)
2016/12/23 15:07:54.7167583 496   644   ComApi          * START *   SLS Discovery
2016/12/23 15:07:54.7176633 496   644   ComApi          *QUEUED* SLS Discovery
2016/12/23 15:07:54.7179790 496   6324  ComApi          *RESUMED* Discovery
2016/12/23 15:07:54.7179800 496   6324  ComApi          Exit code = 0x00000000, Result code = 0x8024500C
2016/12/23 15:07:54.7179807 496   6324  Api             * END *   Discovery ClientId
2016/12/23 15:07:54.7188874 496   644   ComApi          ISusInternal:: DisconnectCall failed, hr=8024000C
2016/12/23 15:07:54.7196413 496   644   ComApi          Unable to get SLS chunk. (hr=8024500C)
2016/12/23 15:07:56.3733373 496   644   ComApi          * START *   SLS Discovery
2016/12/23 15:07:56.3743629 496   644   ComApi          *QUEUED* SLS Discovery
2016/12/23 15:07:56.3747522 496   2816  ComApi          *RESUMED* Discovery
2016/12/23 15:07:56.3747536 496   2816  ComApi          Exit code = 0x00000000, Result code = 0x8024500C
2016/12/23 15:07:56.3747540 496   2816  Api             * END *   Discovery ClientId
2016/12/23 15:07:56.3756748 496   644   ComApi          ISusInternal:: DisconnectCall failed, hr=8024000C
2016/12/23 15:07:56.3763218 496   644   ComApi          Unable to get SLS chunk. (hr=8024500C)
2016/12/23 15:07:56.3767383 496   644   ComApi          * START *   SLS Discovery
2016/12/23 15:07:56.3776312 496   644   ComApi          *QUEUED* SLS Discovery
2016/12/23 15:07:56.3779236 496   7452  ComApi          *RESUMED* Discovery
2016/12/23 15:07:56.3779250 496   7452  ComApi          Exit code = 0x00000000, Result code = 0x8024500C
2016/12/23 15:07:56.3779253 496   7452  Api             * END *   Discovery ClientId
2016/12/23 15:07:56.3788717 496   644   ComApi          ISusInternal:: DisconnectCall failed, hr=8024000C
2016/12/23 15:07:56.3795682 496   644   ComApi          Unable to get SLS chunk. (hr=8024500C)
2016/12/23 15:07:58.1980323 496   6324  ComApi          * START *   SLS Discovery
2016/12/23 15:07:58.1988360 496   6324  ComApi          *QUEUED* SLS Discovery
2016/12/23 15:07:58.1992048 496   2816  ComApi          *RESUMED* Discovery
2016/12/23 15:07:58.1992062 496   2816  ComApi          Exit code = 0x00000000, Result code = 0x8024500C
2016/12/23 15:07:58.1992069 496   2816  Api             * END *   Discovery ClientId
2016/12/23 15:07:58.2000875 496   6324  ComApi          ISusInternal:: DisconnectCall failed, hr=8024000C
2016/12/23 15:07:58.2007726 496   6324  ComApi          Unable to get SLS chunk. (hr=8024500C)

Transfer updates from online WSUS to offline WSUS

January 4, 2017, 1:46 am
$
0
0

Hi everybody,

First, sorry for my approximative english.

I have 2 servers WSUS, one is connected to internet and get his updates from Windows servers. The second one is in offline network.

The procedure i've applied to update my offline server is :

  • Copy folders inside WSUSContent of online server to external disk
  • Export metadata with this command : wsusutil.exe export export.xml.gz export.log (first i try a .cab extension, but size is too big)
  • Copy folders from external disk inside WSUSContent of offline server
  • Import metadata with this command : wsusutil.exe import export.xml.gz import.log

Updates seems to be present, but this message is present on the offline server : "0,00 Mo download on 379 888,82Mo".

I supposed the offline server doesn't know the updates are already present.

Precisions :

  • Windows 2012 R2
  • Online update services version : 6.3.9600.16384
  • Offline update services version : 6.3.9600.16384
  • All updates are approved on the each servers
  • Clients doesn't see any updates avalaible. But in its log there are : "Found 0 updates and 75 categories in search; evaluated appl. rules of 1006 out of 2017 deployed entities" and "Reporting status event with 211 installable, 103 installed, 0 installed pending, 0 failed and 0 downloaded updates"

Then, I think the last thing is to say to the offline server : your updates are already here !

If you need more informations tell me.

Thank you in advance for your help

WSUS settings ignored on Windows 10 1607, client downloads KB3194496 directly from M$

October 3, 2016, 10:28 am
$
0
0

I found a client today that was updating KB3194496 directly from Microsoft servers instead of WSUS. We run WSUS on a Server 2008 R2 machine.

I already found out that Win10 clients needed to go to M$ to get the Anniversary Update Version 1607 and other "upgrades", so I had some clients get 1607 from M$ over the last couple of weeks. But as far as I have seen, the clients should go back to the WSUS for any subsequent updates.

This is a 800 MB update I think. Will all my clients on 1607 do this? So much for using WSUS. Can this behavior be stopped?

Incidentally, this client updated with 100% status report to the WSUS server earlier today... I am not sure before or after going to the M$ server. So it is somehow using both WSUS and M$ updating. I have never heard of this, and I need a M$ comment on this. I am frustrated... and is this fixed on either Server 2012 or 2016?

Windows 10 build 10586 Windows Update GPO Only Allowing 15 Minutes To Restart After User Manually Installs Updates

June 15, 2016, 9:56 am
$
0
0

Windows 10 1511 systems with an auto approval policy for WSUS updates and a 2 day deadline (which is now set for June 17th 2016 at 3:00AM (so the deadline has not yet passed)) are not allowing users who proactively install the updates to schedule or delay the restart for later.

As soon as they manually install the update, a restart countdown of only 15 minutes pops up and will force the update after 15 minutes.

How can we configure this so they have until the deadline date and time to do their restart or at least greatly increase the restart timer to some number much greater than 15 minutes?

We do not want to set the policy for no restart with logged on users because that will prevent the past deadline installations from installing automatically.  We only want the users to have hours or days to restart if they manually install updates that are not past the installation deadline.

A 15 minute countdown is just way too short.




Unexpected automatic re-start after update installation

January 12, 2017, 1:31 am
$
0
0
I had a bit of an unexpected event this afternoon. A Windows Server 2012 R2 terminal server rebooted itself unexpectedly after an update installation, contrary to the settings set in the Group Policy.

The following GPO applies to the server:


    Windows Update 
    Data collected on: 2016-12-19 16:23:58
    
    General
    Details
    Domain xxxx.xxxxxxxxxxx.net 
    Owner XXXX\Domain Admins 
    Created 2016-11-15 13:36:44 
    Modified 2016-11-15 13:39:40 
    User Revisions 0 (AD), 0 (SYSVOL) 
    Computer Revisions 5 (AD), 5 (SYSVOL) 
    Unique ID {91ADBD9A-8488-4F98-B04A-9C8029A437B2} 
    GPO Status Enabled 
    
    Links
    Location Enforced Link Status Path 
    xxxx No Enabled xxxx.xxxxxxxxxxx.net 
    
    This list only includes links in the domain of the GPO.
    Security Filtering
    The settings in this GPO can only apply to the following groups, users, and computers:Name 
    NT AUTHORITY\Authenticated Users 
    
    Delegation
    These groups and users have the specified permission for this GPOName Allowed Permissions Inherited 
    XXXX\Domain Admins Edit settings, delete, modify security No 
    XXXX\Domain Computers Read No 
    XXXX\Enterprise Admins Edit settings, delete, modify security No 
    NT AUTHORITY\Authenticated Users Read (from Security Filtering) No 
    NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS Read No 
    NT AUTHORITY\SYSTEM Edit settings, delete, modify security No 
    
    Computer Configuration (Enabled)
    Policies
    Administrative Templates
    Policy definitions (ADMX files) retrieved from the central store.Windows Components/Windows Update
    Policy Setting Comment 
    Allow Automatic Updates immediate installation Enabled  
    Allow non-administrators to receive update notifications Disabled  
    Always automatically restart at the scheduled time Enabled  
    The restart timer will give users 
    this much time to save their 
    work (minutes):  15 
     
    Policy Setting Comment 
    Configure Automatic Updates Enabled  
    Configure automatic updating: 4 - Auto download and schedule the install 
    The following settings are only required and applicable if 4 is selected. 
    Install during automatic maintenance Disabled 
    Scheduled install day:  0 - Every day 
    Scheduled install time: 03:00 
     
    Policy Setting Comment 
    Turn on recommended updates via Automatic Updates Enabled  
    
    User Configuration (Enabled)
    No settings defined.

The expected result therefore should be that the server should install any updates with no impact immediately, and install any updates not requiring any reboot at 3 AM, after which it will reboot.

The actual result is that the server rebooted at 16:51:30 with the following message in WindowsUpdate.log:

    2017-01-1116:51:30:0718121368AUClient has determined it is safe to reboot without warning. Rebooting now...

By using the TerminalServices-LocalSessionManager log I have been able to determine that the last user of the terminal server logged off for the day at 16:41:29, so it would seem that after exactly 10 minutes of nobody being logged onto the computer, the machine did reboot. The full WindowsUpdate.log is available for review.

Further analysis of the log does seem to indicate that updates that required reboots were installed at 03.00 at 2017-01-11 as per the setting, but for some undetermined reason, the server was not rebooted at that time.


Viewing all 12874 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>