I'm wanting WSUS to block or prevent a specific patch from being pushed or deployed to all my systems.
For example I don't want WSUS to push / deploy KB958650
How is this done in WSUS, in the past its been all or nothing, but I remember that I have to approve all patches. Could I just not approve a patch and it wont ever get pushed / deployed to all my systems? Also what would happen if I just simply declined the update, would that work?