ibidata
asked on
How do I install Microsoft Update on domain workstations?
We have an Active Directory domain. I want to ensure "Microsoft Update" is installed and working instead of "Windows Update". I have the group policy set up to automatically install updates but not all of them have the "Microsoft Update" because Office updates are not getting installed. How do I make sure all workstations use "Microsoft Update" rather than "Windows Update"?
Here is a snippet from Microsoft update FAQ
"Yes. If you turn on Automatic Updates using your settings in Control Panel, Windows will automatically find and install high-priority updates for any Microsoft products that you have installed and that are supported by the website."
I would however suggest setting up a WSUS server. This not only lets you point your workstations to an internal site but allows the following:
-Prevention of users applying updates that may break something.
-Ability to select what machines get what updates (servers and workstations) by either using WSUS groups or AD
-Ability to view reports and find which machines are in need of updates and which updates applied to which machines.
"Yes. If you turn on Automatic Updates using your settings in Control Panel, Windows will automatically find and install high-priority updates for any Microsoft products that you have installed and that are supported by the website."
I would however suggest setting up a WSUS server. This not only lets you point your workstations to an internal site but allows the following:
-Prevention of users applying updates that may break something.
-Ability to select what machines get what updates (servers and workstations) by either using WSUS groups or AD
-Ability to view reports and find which machines are in need of updates and which updates applied to which machines.
ASKER
I'm trying to avoid WSUS. I prefer not to have another application and server to manage. I think I read somewhere that WSUS should be a dedicated server.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Regarding your above comment. The problem I'm having is that the workstation's "Windows Update" is not updating automatically to "Microsoft Update". Is there a way to make sure this happens automatically?
See the MS FAQ which I posted from before.
http://update.microsoft.com/microsoftupdate/v6/default.aspx?ln=en-us
If you use automatic updates, you get all microsoft product updates whether you have installed the Microsoft Update or not. You will set the automatic updates setting through Group Policy. I suggest ensuring that people are not rebooted while logged on as well as different settings for servers.
If you manually go to each machine and try to go to Microsoft update you will have to install it. There is no way around that.
http://update.microsoft.com/microsoftupdate/v6/default.aspx?ln=en-us
If you use automatic updates, you get all microsoft product updates whether you have installed the Microsoft Update or not. You will set the automatic updates setting through Group Policy. I suggest ensuring that people are not rebooted while logged on as well as different settings for servers.
If you manually go to each machine and try to go to Microsoft update you will have to install it. There is no way around that.
If you have a small environment, you could even install WSUS on a workstation class machine (with a server OS installed). It's generally not considered a production application and rebuilding the server wouldn't be too hard. You could even just take a backup of it after you build it and put it aside.
http://technet.microsoft.com/en-us/library/cc720539.aspx