Quantcast
Channel: WSUS forum
Viewing all 12874 articles
Browse latest View live

What is the cadence for Microsoft Updates?

October 23, 2019, 5:00 am
$
0
0

Hi.  I know that there is an official "Patch Tuesday" every month, when Microsoft announces and releases all the security updates that need to be installed.  It seems like that the second i get those patch tuesday updates installed, that i have another batch to install.  What are the others i am getting through the 30 day month cycle?  Why are they not also released on Patch Tuesday?  It seems like we always chasing updates, instead of having one batch a month.  

Search

how to display list of patches for computer?

October 24, 2019, 5:15 am
$
0
0

Hi,

When search a computer by clicking All Computers node and then checking Status Report of the found computer it displays quantity of patches needed (or failed). But the line that shows 21 updates have not been installed (in the example below) is not clickable and when going on the next page there is no list of patches.

So, how to display list of needed/failed patches for the computer in WSUS?

--- When you hit a wrong note its the next note that makes it good or bad. --- Miles Davis

Disk cleanup spins on Windows Update screen after reboot

January 29, 2018, 7:16 am
$
0
0
I ran the Windows Disk Cleanup wizard on a 2008 R2 machine and cleaned up the WIndows Update files, Temporary files, and Recycle Bin.  After rebooting the machine, during start up it went through the motions as though Windows Updates had applied (i.e. "Configuring Windows Updates") it got to 100% and stayed there for hours.  I had to use psexec to go in, stop the process, got into the machine, rebooted a couple times and the problem no longer occurred.  Is this a common occurrence?  Were there some files that I missed or shouldn't have deleted to cause such a hang?  We're hoping to roll out a solution to clean up the Windows Update and SxS folders on 2008 R2 and are hoping Disk Cleanup will work for us, so hoping this is a one off.

Wsus snap-in showing duplicated server entries

July 12, 2012, 3:30 am
$
0
0

Hi!  We have a single Wsus Server on premises in our Company.

Recently i've come across the problem of WSUS not synchronizing properly. Following the suggestions in this thread, all is working as expected again.

http://social.technet.microsoft.com/Forums/en/winserverwsus/thread/79f76bdf-83cc-47d1-8244-5d544fe7d21

Sadly the Wsus Snap in ins showing me 2 identical entries for the same Wsus server (all settings, updates lists etc)

did i miss something? I've already deleted the redundant entries in the Console and i checked the SSL bindings on the IIS.(all seems like before)

But when i open the Console again, it still presents me with :

Update Services

+ fqdn(.local)

+ fqdn(.local)

thx in advance

WSUS fails to download Windows 10 upgrade files

January 11, 2016, 2:59 am
$
0
0

Hi,

Im approving the Windows 10 1511 upgrades on WSUS - Server 2012R2.

Single WSUS server synching directly with MS and storing updates locally.

The Windows 10 upgrades keep failing to download though so i cant actually deploy them to my Windows 10 group for upgrade from Win 7.

I approve the update  "Upgrade to Windows 10 Pro, version 1511, 10586 - en-gb, Retail for my Windows 10 computer group.

It starts downloading then about 5 minutes later will come up with:

The files for this update failed to download. 
The update can be approved but will not be available to computers until the download is complete. Click retry download to start the download again.


The following is logged in the event log:

Content file download failed.
Reason: File cert verification failure. 
Source File: /d/upgr/2015/12/10586.0.151029-1700.th2_release_clientpro_ret_x64fre_en-gb_4609bbb28b8638ba63df922e68ae75a77434df64.esd 
Destination File: S:\WSUS Content\WsusContent\64\4609BBB28B8638BA63DF922E68AE75A77434DF64.esd

Ive tried rebooting the server and running the server clean up wizard but i cant clear the above error cycle.

Anybody any ideas?

Thanks


Best practice for applying updates to Hyper-v server 2012

October 25, 2019, 7:44 am
$
0
0

Hello everyone

What would be the best practice to update a Hyper-V Server 2012?

Is there any special thumb rule for hyper-V Server 2012

Warm regards MeVs




Approving drivers in WSUS

October 28, 2019, 7:28 am
$
0
0

I would like to know what other IT professional do with drivers in WSUS

My boss told me not to approve drivers in WSUS because they could cause problem with laptops.

We are currently only approving Windows Updates and Surface Drivers and not approving drivers for any other component. 

Can  anyone tell me if this makes sense? Is it safe to deploy drivers in WSUS?

We currently have HP Probooks 650 G3, G4, G5 running Windows 10 Pro version 1903

Feture update vs Upgrade

October 28, 2019, 7:56 am
$
0
0

Hi Guys,

pls... can someone explain to me, what is different between Feture update vs Upgrade?

I red article where author is saying, "Feature updates are technically new versions of Windows 10". 

So my queston is, what is upgrade?

Cuz I have allowed a Fetures update on WSUS server and today I figure out that Windows 1809 are instlling via "Update" to 1903 even if Upgrade class is denied on WSUS... 

It should be this update KB4522355... 

Search

Prevent WSUS from including non-English updates

October 28, 2019, 10:21 am
$
0
0
I have my WSUS server setup to not download updates. However, when it checks for and approves updates, it includes feature updates for all languages, not just US-EN. I am having to manually decline the updates for other languages. How can I exclude these or automatically decline them?

Customize WSUS port to a value other than 80 and 8530

November 1, 2019, 2:55 am
$
0
0

I've set up WSUS on Windows Server 2012 R2. I changed the http port to 8728. Then I find the following error in the event log:

The WSUS content directory is not accessible.
System.Net.WebException: Unable to connect to the remote server ---> System.Net.Sockets.SocketException: No connection could be made because the target machine actively refused it 10.24.4.111:8530
   at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
   at System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)
   --- End of inner exception stack trace ---
   at System.Net.HttpWebRequest.GetResponse()
   at Microsoft.UpdateServices.Internal.HealthMonitoring.HmtWebServices.CheckContentDirWebAccess(EventLoggingType type, HealthEventLogger logger)

It seems some service is still trying to connect to port 8530. Is it mandatory to use 80 or 8530 as the WSUS http port?

How to uncheck "Microsoft Update Improvement Program" registry or powershell

November 1, 2019, 12:06 pm
$
0
0

I can not find this ANYWHERE on google. How on earth do you uncheck the box for WSUS to not join the Microsoft Update Improvement Program via registry or powershell?

I need an automated deployment and this one little thing is driving me nuts. I have looked at process monitor to try and see what this checkbox is doing. Everytime you click apply, the process will read values from 

HKLM\Software\Microsoft\Update Services\Server\Setup

but there are no keys in there that look to have anything to do with an improvement program. How on earth do you check/uncheck this box programmatically

?

WSUS targeting Groups not working

November 2, 2019, 7:28 am
$
0
0
First and foremost, this is my first time using WSUS, so please bear with me.

I've created an active directory domain, using Windows Server 2012 R2.
Inside I've created a WSUS server with Windows Server 2019.

Created an OU with all my servers.
I've Defined a Group Policy and linked it to that OU.

The Defined policies are the following:

1. Specify intranet Microsoft Service Location: Verified on the servers registry.
2. Configure Automatic Updates: Enable. 3 – Auto download and notify for install – client automatically downloads new updates and notifies you about them
3. Enable client-side targeting: Enable. Target group name for this computer: Servers – in the WSUS console, assign clients to the Servers group

Inside 3 there are listed my groups, which are:
Group1;Group2;Group3;Group4

In the WSUS Console I've defined the following structure
All Computers > DomainNameGroup> Group1
All Computers > DomainNameGroup> Group2
All Computers > DomainNameGroup> Group3
All Computers > DomainNameGroup> Group4

In the WSUS Options I've set the computers Options option: Use Group Policy or registry settings on computers

And last when doing the updates approval I'd specified the desired Groups inside my WSUS that I would like the updates to apply.

So the questions would be:
Why the updates aren't arrived to the desired servers/groups?
What I'm wrong?
Shouldn't put my WSUS computer groups inside another group (DomainNameGroup)?

WSUS Reinstallation Fails

March 19, 2013, 8:44 am
$
0
0

Hi,

I 'm trying to resolve an issue with WSUS installed on Server 2012. 

I've deleted WSUS for reconfiguration, but it after installation it had the sam configuration so I decided to manually remove all WSUS junk from system using recomendations from this thread http://social.technet.microsoft.com/Forums/ru-RU/winserverwsus/thread/f447e7d6-7007-4eb6-b38b-90f92525e092 

After steps described in this artile I can't install WSUS because postInstallation tasks fail with:

2013-03-19 19:23:45  Value is C:\Program Files\Update Services
2013-03-19 19:23:45  Swtching DB to multi-user mode......
2013-03-19 19:23:46  Finished setting multi-user mode
2013-03-19 19:23:46  Writing DB settings to registry...
2013-03-19 19:23:46  Marking PostInstall done for UpdateServices-WidDatabase in the registry...
2013-03-19 19:23:46  Configuring IIS...
2013-03-19 19:23:46  Start: ConfigureWebsite
2013-03-19 19:23:46  Configuring website on port 8530
2013-03-19 19:23:46  System.ComponentModel.Win32Exception (0x80004005): The system cannot find the file specified
   at System.Diagnostics.Process.StartWithShellExecuteEx(ProcessStartInfo startInfo)
   at System.Diagnostics.Process.Start(ProcessStartInfo startInfo)
   at Microsoft.UpdateServices.Administration.UseCustomWebSite.ExecuteIisCustomAction(String arguments)
   at Microsoft.UpdateServices.Administration.UseCustomWebSite.Install(Int32 portNumber)
   at Microsoft.UpdateServices.Administration.UseCustomWebSite.InstallAndConfigure(IisConfiguration& iisConfiguration, Int32 newPortNumber)
   at Microsoft.UpdateServices.Administration.PostInstall.ConfigureWebsite(Int32 portNumber)
   at Microsoft.UpdateServices.Administration.PostInstall.Run()
   at Microsoft.UpdateServices.Administration.PostInstall.Execute(String[] arguments)

I've already found this thread http://social.technet.microsoft.com/Forums/en-US/winserverwsus/thread/e1315264-c8f8-4d90-9892-330a04ac2753 but i don't have SCCM installed on this server.

Can anybody help with this problem?

New Operating Systems not Reporting to WSUS

November 4, 2019, 2:00 am
$
0
0

Good morning,

Hoping someone might be able to help out or shine some light on this for me.

I've just deployed a Windows Server 2019 server with the WSUS server role installed. The installation went really well, Group Policy is all set up and all the required updates have been downloaded.

The issue I'm having is, no newer Windows operating systems are reporting into the WSUS server.

For example: Windows 7, Server 2008 R2, Server 2012 R2 - are all reporting to WSUS perfectly fine. However: Windows 10, Server 2016, Server 2019, and Server Core - are refusing to report anything.

Any help or advice would be greatly appreciated.

Windows updates Error Code 80244019

January 11, 2019, 10:32 am
$
0
0

Hi experts

I am facing issue on two windows servers 2012 R2 and two windows servers 2016, We are using WSUS, and  i am not able to update Microsoft patches through WSUS on these servers, i am getting error 80244019 on window server 2012 R2  and error 0x80244019 on windows server 2016.

i have stopped windows update service on windows server 2012 R2, deleted software distribtuion folder and started windows update service, i have restarted BITS service, issue is the same. Experts guide me on this

Search

Install updates is greyed out on all Windows 2016 server systems.

January 15, 2018, 12:41 pm
$
0
0

I have 2 WSUS servers joined to a single domain and each is dedicated to a single site. WSUS server "A" located at site "A" is using GPO policy "A" and administrators are able to check for updates and install any pending updates. However, WSUS server "B" located at site "B" is using GPO policy "B", which is the same as GPO policy "A", but pointing to itself for patching and everything is greyed out and displaying some settings are managed by your organization.

GPO modification in any way does not clear the "some settings are managed by your organization" and does not give administrators the ability to install pending updates. Systems are checking into WSUS server and receiving updates.

Some clients don't ask update from WSUS after removing group

November 5, 2019, 4:07 am
$
0
0

Dear colleagues, I need your help.

I removed a group from WSUS one week ago. The group was re-created in a 5 min, but something happened with DB or service. Some clients after that tried to check the update and got nothing, but really they need more than 150 updates. I checked WindowsUpdate.log, but nothing. Other clients, which were created after that little fall, asked updates and got it. I used the Troubleshooter by MS and popular script for resetting WUAgent, but without success. Everything looks ok, but I know this servers need a lot of updates. One of the signs is TimeZone settings: it should be GMT+3 with updates, but now it's GMT+4 without updates.  The clients are Win Server 2012 R2, VMWare Vms. Maybe you see smth like that and could give me a tip?
Thank you in advance!

Anna

Remove Old Update Metadata

November 5, 2019, 7:38 am
$
0
0

Hi,

Im trying to import updates and the respective metadata into a disconnected environment but I'm get BITSADMIN Transistent Errors which are holding up the import.

Running Get-Bitsadmin -AllUsers | select * theres a handful of updates which are trying to reach out to microsoft to download. One of them is KB4470500.  I checked the server which is internet facing and this update doesn't exist in the WSUS console.  I then looked at WSUSMetadata.log and noticed that the update was infact there and must be the reason why BITS is trying to download it.

I use AdamsJ WSUS Clean up script which runs daily.  I've ran it just in case while troubleshooting this and exported the metadata but the update is still there.

I run the sched task as so and run successfully "-ExecutionPolicy bypass C:\Clean-WSUS.ps1 -RemoveDeclinedUpdates -CleanupWSUSSyncronizationLogs -WSUSDBMaintenance -WSUSCleanupWizard -SaveReport "HTML""

Ive also ran spGetObsoleteUpdatesToClean up SPROC and theres no updates.

No idea why these updates are present in the metadata!!

Any ideas?

Many Thanks,

Brad

Update Rollup for Skype for Business Server 2019, SmartSetup (KB4470124) showing as needed from WSUS

November 5, 2019, 11:38 am

WSUS 2016 Server - No Data Listed for

November 5, 2019, 12:09 pm
$
0
0

I am seeing the following on my downstream WSUS Server when trying to look at the computers report for any update (doesn't matter if it failed, succeeded, or is downloaded and waiting, I get the same error): "No events are available. This may be because the client has not yet sent the event or the events have been purged from the server. ".

The downstream servers are properly reporting, detailed reports, so it seems limited to the upstream server.

All of my WSUS Servers are the same version: 10.0.14393.2969 on Windows Server Datacenter:  1607 (14393.3274)

I haven't found a fix for this yet, anyone have any ideas on a fix?

Please let me know if you need any other information.

Thanks in advance!

Portland Public Schools / Systems Administrator II



Viewing all 12874 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>