Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

WSUS and symetrically named workgroup machines

Posted on 2011-03-02
10
Medium Priority
?
624 Views
Last Modified: 2012-05-11
Hello Experts -

I've hit a couple brick walls with WSUS.  My enviornment consists of several off domain workgroups, and thoes workgroups share uniquely named servers within them.

For a number of reasons; thoes workgroup server names cannot be changed.  The problem I'm up against now is getting WSUS to reconize them all as unique machines.  It will only keep one instance of the commonly named workgorup server listed in the console.

If I wuauclt /resetauthorization /detectnow on a particular machine, it will indeed populate in WSUS, but overrighting the other same-name server (they all have unique IP).

Any help here?

0
Comment
Question by:rita_corp
  • 7
  • 3
10 Comments
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 35020677
Run the script found here on them

http://msmvps.com/blogs/athif/pages/66376.aspx

============================================

@echo off
Echo Save the batch file "AU_Clean_SID.cmd". This batch file will do the following:
Echo 1.    Stops the wuauserv service
Echo 2.    Deletes the AccountDomainSid registry key (if it exists)
Echo 3.    Deletes the PingID registry key (if it exists)
Echo 4.    Deletes the SusClientId registry key (if it exists)
Echo 5.    Restarts the wuauserv service
Echo 6.    Resets the Authorization Cookie
Echo 7.    More information on http://msmvps.com/Athif
Pause
@echo on
net stop wuauserv
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v AccountDomainSid /f
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v PingID /f
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v SusClientId /f
net start wuauserv
wuauclt /resetauthorization /detectnow
Pause

============================================

0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 35020700
If that doesnt work you will have to rename
0
 

Author Comment

by:rita_corp
ID: 35020716
I've run this multiple times; with the following result:

Machine A is only showing in the WSUS console:

Run above script on Machine B

Machine B is only showing in WSUS console

Change name of Machine A to something Unique and run script

Machine A and B both show in console.

In production, I cannot change the machine names

Thanks, let me know if I can provide more info!
0
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

 
LVL 47

Expert Comment

by:Donald Stewart
ID: 35020759
You're gonna have to explain the reasoning for duplicate machine names
0
 

Author Comment

by:rita_corp
ID: 35021017
Trust me I know it's hard to offer that as a given; but thoes machines live in off-domain workgroups and are host to a number of thin client apps that make static reference to a particular name.  Changing the name would essentially be chaning the blood type of our Business Centers.  All things considered, Windows Updates/WSUS has been the only caveat in the operation.  I was hoping there was an EPO way, but haven't found one yet.  EPO generates a guid based of an unique identifier generate by the Mcafee Agent... I was hoping the WU agent did something simiar; I understand it's tied ot SID, but have ensured unqiue SID (sysprep loads etc) across all target workstation servers.

TRUELY hoping for a way to make this work but would absolutley settle for a way to customize windows update Agent on the Client computers so that it only pull/ download/and installs critical updates (from microsoft, not WSUS) that are x amount of days OLD.  (to give us time to let them hit a lab site and see if they sit well).  Is that possible?

Thanks for all your help
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 35021056
You should take a look at WUInstall

http://wuinstall.com/
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 35021084
Do the workstations have the latest windows update agent ? That could also be the problem
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 35021100
Here's another option you could use as well


Windows Update Agent force script, email results version 2.6

http://community.spiceworks.com/scripts/show/82-windows-update-agent-force-script-email-results-version-2-6
0
 

Author Comment

by:rita_corp
ID: 35023170
WUinstall looks promising; anything in this vein

http://support.microsoft.com/kb/262841?

re:  command line driven windows updates?
0
 
LVL 47

Accepted Solution

by:
Donald Stewart earned 2000 total points
ID: 35023925
With Wuinstall you dont need the individual command line options. I believe it uses the same thing as Qchain


http://support.microsoft.com/kb/296861
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
Experts-Exchange users below are the steps you can follow to upgrade your Lync server to latest CU's or cumulative updates. Note: Perform it during non-production hours.   Step 1: Backup your lync and SQL server database. Follow below article: h…
This course is ideal for IT System Administrators working with VMware vSphere and its associated products in their company infrastructure. This course teaches you how to install and maintain this virtualization technology to store data, prevent vuln…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…

885 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question