Windows SBS 2008 not updating


I am running a SBS 2008 at present.  I cannot run any microsoft updates at all.

When attempting to run windows update or microsoft update I get error 80072EFD.  I looked into this as much as I could and there seemed to be a DCOM error and the resolution was simply to restart, this made no difference.

Lawrie GormleyAsked:
Who is Participating?
hatkindConnect With a Mentor Commented:
If you really not using WSUS try do that suggest JBond2010.

But if you use WSUS try do next:

 - stop Automatic Update and BITS service
 - remove all files and folders in C:\Windows\SoftwareDistribution
 - start Automatic Update and BITS service
 - run wuauclt /resetauthorization /detectnow
It can means that your sbs server can't connect to Microsoft updates site.
Do you use any firewall?
JamesSenior Cloud Infrastructure EngineerCommented:
It sounds like your Windows Update cache has been corrupted.

See for instructions and a Microsoft fix-it widget.
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

JamesSenior Cloud Infrastructure EngineerCommented:
Start run oobe
Select Configure Windows Firewall
Choose advanced settings
Choose windows firewall properties
Make sure firewall state is off for domain profile, private and public

JamesSenior Cloud Infrastructure EngineerCommented:
Looked at the Windows Update log file, located at C:\Windows\WindowsUpdate.log.
Lawrie GormleyAuthor Commented:
Hi guys,

The Microsoft Fix-It widget made no difference.  The server is one of three all running with no windows firewall activated and sophos antivirus.  The same configuration is on all 3 servers and the other 2 update with no errors at all.

The Windows update.log is attached.
JamesSenior Cloud Infrastructure EngineerCommented:
I presume your not using WSUS? That was a red flag to me immediately. Edit the default domain policy as follows:

Computer Configuration >> Administrative Templates >> Windows Components >> Windows Updates >> "Specify intranet Microsoft update service location".  It was set to "Not configured".

Set it to disabled, and then reboot your Server.
Lawrie GormleyAuthor Commented:
Seems on completing this it allowed me update windows update and then start installing further updates!!  

Cheers :)
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.