Solved

Windows update services help needed

Posted on 2008-10-07
10
591 Views
Last Modified: 2012-05-05
Hi I have installed windows update serices and configured group policy in the following way:

comp config > windows update >
config auto updates enables.
specify intranet update service location > http://computername
Enable client side targeting > computergroup1
auto update frequency

in wsus I have added a group called computergroup1,
what else do I need to do because my computer is not showing in wsus
thanks
0
Comment
Question by:Dan560
  • 5
  • 4
10 Comments
 
LVL 17

Expert Comment

by:sgsm81
ID: 22657658
Make sure you have configured all the required settings - there is another setting in Group policy, its above the specify intranet update location setting, its to actually specify update settings and if you look at the policy you will see it.

Also ensure that the website you use is not using an ssl certificate or if it is that it is correctly referenced - I recommend using http to get things working then consider https.

If you use HTTPS, the certificate for the site (i think) is a locally generated one and therefore not trusted by the pc's on the network, that means the connection will probably not be established properly.

The computers should appears in the WSUS console now and any other pc's you put in that OU will have the same settings applied.

Let me know if there's anything else you would like to know
0
 
LVL 2

Author Comment

by:Dan560
ID: 22657715
for the intranet update location setting i have just used http://mycomputername this doesnt look correct,
as in IIS it ses the wsus admin site is listening on 8530
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 22658110
http://servername:8530  (points your clients to go to port 8530)
http://servername  (points your clients to use port 80)
0
 
LVL 2

Author Comment

by:Dan560
ID: 22658157
when I navigate through the web browser on that address I get
Some content or files on this webpage require a program that you don't have installed.  
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 22658269
OK Dan:

It looks like you need to change your GPO to http://servername:8530 and then go to the command prompt and type GPupdate /force.

Let me explain WSUS install a little bit.

If the WSUS is installed on a server that already has an existing web page on the default HTTP port of 80, WSUS will make provisions by using an alternative port (port 8530).
In this case, your GPO should look like this:
HTTP://servername:8530

If this server doesn't have another web site on it, WSUS will use the default HTTP Port of 80. In this case your GPO should look like this:
HTTP://servername  Or HTTP://servername:80
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 38

Expert Comment

by:ChiefIT
ID: 22658281
Once the GPO is fixed we can determine if you are missing anything by interfacing the clients with the server. There is a utility called WSUSclientdiag that we can use to diagnose the problems.
0
 
LVL 2

Author Comment

by:Dan560
ID: 22658357
I did that already, hhhmmm maybe I have setup the gpo wrong
I havent edited the Default domain policy
I have just created an OU called accounts and linked a GPO to that OU. This does not sound correct for some reason,do I have to edit a policy that links to the Default Domain?
0
 
LVL 2

Author Comment

by:Dan560
ID: 22660043
more info
ran a test

WSUS Client Diagnostics Tool
Checking Machine State
        Checking for admin rights to run tool . . . . . . . . . PASS
        Automatic Updates Service is running. . . . . . . . . . PASS
        Background Intelligent Transfer Service is running. . . PASS
        Wuaueng.dll version 7.2.6001.784. . . . . . . . . . . . PASS
                This version is WSUS 2.0
Checking AU Settings
        AU Option is 2 : Notify Prior to Download . . . . . . . PASS
                Option is from Control Panel
Checking Proxy Configuration
        Checking for winhttp local machine Proxy settings . . . PASS
                Winhttp local machine access type
                        <Direct Connection>
                Winhttp local machine Proxy. . . . . . . . . .  NONE
                Winhttp local machine ProxyBypass. . . . . . .  NONE
        Checking User IE Proxy settings . . . . . . . . . . . . PASS
                User IE Proxy. . . . . . . . . . . . . . . . .  NONE
                User IE ProxyByPass. . . . . . . . . . . . . .  NONE
                User IE AutoConfig URL Proxy . . . . . . . . .  NONE
                User IE AutoDetect
                AutoDetect not in use
Checking Connection to WSUS/SUS Server
WUStatusServer is not set through Policy
WUServer is not set through Policy
        UseWuServer is disabled . . . . . . . . . . . . . . . . FAIL
Press Enter to Complete
event logs show:

Self-update is not working. ID 13042 CAT=CLIENTS

No client computers have ever contacted the server.

The permissions on directory D:\WSUS are incorrect.
 
I have checked permissions but they look all correct :S
0
 
LVL 2

Author Comment

by:Dan560
ID: 22660051
found another!

Content file download failed. Reason: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED)) Source File: /msdownload/update/v3-19990518/cabpool/windowsxp-kb842773-v2-x86-enu_1d3d2bc417bf9d881206ed238ad6a4a9c189cfb3.exe Destination File: d:\WSUS\WsusContent\B3\1D3D2BC417BF9D881206ED238AD6A4A9C189CFB3.exe.
0
 
LVL 38

Accepted Solution

by:
ChiefIT earned 500 total points
ID: 22667051
"'I have just created an OU called accounts and linked a GPO to that OU. This does not sound correct for some reason,do I have to edit a policy that links to the Default Domain?""

This is correct. It is recommended by WSUS to not create a default domain policy for these GPOs. So, creating an OU and linking to the OU is the correct action.

It appears like you may have a permissions problem:
This link will help you verify your settings on the WSUS server. Make sure you follow up with the NTFS permissions, as well:
http://technet.microsoft.com/en-us/library/cc708545.aspx

0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now