?
Solved

WSUS not updating clients

Posted on 2006-07-03
11
Medium Priority
?
2,098 Views
Last Modified: 2012-07-23
WSUS SP1 is installed on Windows 2003 server. Synchronizes ok. All clients report fine. GP is set for option 4-download and install at 2am when no one is logged into the workstations. I can install updates manually by going to MS windows updates on the clients. Reports shows what is needed and I also have the options set to automatically detect and install select criteria such as: critical and security updates, service packs, Office service packs and updates.  What am I missing?  This is worth 500 points.
0
Comment
Question by:aschosta
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +4
11 Comments
 
LVL 16

Expert Comment

by:Nyaema
ID: 17035226
You need to tell your clients where to get there updates from

group policy for that:
Computer Configuration->Administrative Templates->Windows Components->Windows Updates

Double click and enable the following gp setting
  Specify intranet Microsoft update service location

Fill the following fields
  Set the intranet update service for detecting updates:
  Set the intranet statistics server:

For both use the same WSUS Server
i.e. enter:  http://MyWSUS_Server


The equivalent registry entry is:
   HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\

   Value name: WUServer
   Registry Value Type: Reg_SZ
    This value sets the SUS server by HTTP name (for example, http://IntranetSUS).

     Value name: WUStatusServer
     Registry Value Type: Reg_SZ
    This value sets the SUS statistics server by HTTP name (for example, http://IntranetSUS).

0
 
LVL 29

Expert Comment

by:Michael Pfister
ID: 17035376
First place to check on client: C:\Windows\WindowsUpdate.log

Check your client and server using the tools provided by MS: http://www.microsoft.com/windowsserversystem/updateservices/downloads/default.mspx (Server Diagnostic Tool and Client Diagnostic Tool).

Check your IIS is healthy: http://www.microsoft.com/downloads/details.aspx?FamilyID=9bfa49bc-376b-4a54-95aa-73c9156706e7&DisplayLang=en
Authentication and Access Control Diagnostics 1.0 can test anonymous access to your IIS.

Hope it helps,

Michael
0
 
LVL 10

Expert Comment

by:victornegri
ID: 17035497
You can also try setting a deadline date for the update. This can force your computers to update by a specific date.

Also check your C:\WINNT\WindowsUpdate.log file on your client stations. It may shed some more light on what's going on. You may have to delete the SoftwareDistribution folder and/or delete the WIndowsUpdate.log filea nd have WindowsUpdate recreate it.

Start a forced scan on the workstations by typing "wuauclt /detectnow" at the command prompt.
0
Video: Liquid Web Managed WordPress Comparisons

If you run run a WordPress, you understand the potential headaches you may face when updating your plugins and themes. Do you choose to update on the fly and risk taking down your site; or do you set up a staging, keep it in sync with your live site and use that to test updates?

 
LVL 6

Expert Comment

by:engineer_dell
ID: 17035551
Hello ASCHOSTA,

Try this if this doesn't help you then post the event errors and update log.

1. At the client, shutdown Automatic Updates service.
2. At the client, use bitsadmin to check the BITS queue, and flush it if there's anything there.
3. At the client, make a backup of the %windir%\SoftwareDistribution folder and all subfolders and the %windir%\WindowsUpdate.log file.
4. At the client, purge the following folders of all content:
        %windir%\SoftwareDistribution\Datastore\Logs\edb*.*
        %windir%\SoftwareDistribution\Datastore\DataStore.edb
        %windir%\SoftwareDistribution\Download
        %windir%\SoftwareDistribution\EventCache
and delete the following files:
        %windir%\SoftwareDistribution\ReportingEvents.log
        %windir%\WindowsUpdate.log
0
 
LVL 6

Accepted Solution

by:
engineer_dell earned 2000 total points
ID: 17035555
5. At the client, delete the three values in the registry key at:
    HKLM\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate
This is necessary to force the creation of a new SusClientId, which will force the creation of an all new database record (thus avoiding any potential issues with corruption or bad data in the original record, that may or may not actually be physically present in the database).
6. At the server, delete pc176.moxy.no from the WSUS server, completely.
7. At the client, restart the Automatic Updates service, and monitor the WindowsUpdate.log and/or ReportingEvents.log for detection/download activity for updates. Following the detection and the uploading of events to the ReportingWebService, review the status as reported by the WSUS server, to determine if the new instance of this client appears and is reported correctly with regard to installed and needed updates.

Remember it may take time to work, try giving one or two reboots,

Hope it helps
Engineer_Dell
0
 

Author Comment

by:aschosta
ID: 17042294
These are all great suggestions and I have looked into all but the last one from engineer dell. I wll be able to complete that task tomorrow. I checked the logs on one of  the clients and it was saying that windows installer 2.0 was too old so I uploaded 3.1, still no updates. All clents check into the WSUS server ok, I can go to each client and do a manual update where it will pull from MS, not the WSUS server, and they all will list the updates needed which are then ready to download. ( I thought even at this point the clients would pull from the WSUS server. Am I wrong?) This particular client has neither SP1 or SP2 installed. Again, I do have windows installer 3.1 on it, BITS is there, too. How about windows validation tool? Thank you.
0
 
LVL 10

Expert Comment

by:victornegri
ID: 17043785
Are these Windows 2000 Pro clients? I don't think automatic updates will work with anything less than Win2k SP3 already installed. Disregard if they are XP.
0
 

Author Comment

by:aschosta
ID: 17046280
they are all XP
0
 
LVL 7

Expert Comment

by:imacgouf
ID: 17047982
Check here on
Troubleshooting Client Targeting
http://wsus.editme.com/TroubleshootingClientTargeting
0
 

Author Comment

by:aschosta
ID: 17052057
The other important part is if you are running a Sonicwall Firewall like I am, make sure you create client exclusions if you are using Gateway Anti-Virus and/or Anti-spyware services on the firewall. You can also enable byte range exceptions in the diag.html portion of the OS running the Sonicwall. Thank you to all who replied!!!
0
 

Expert Comment

by:MJNotesUser
ID: 38215271
Can someone tell me if I need to remove that client from the WSUS server once I have completed the steps above by Engineer_Dell?
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As the title indicates, I have done this before. It chills me everytime I update the OS on my phone, (http://www.experts-exchange.com/articles/18084/Upgrading-to-Android-5-0-Lollipop.html) because one time I did this and I essentially had a bricked …
In this article we will discuss all things related to StageFright bug, the most vulnerable bug of android devices.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question