• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 647
  • Last Modified:

WSUS and symetrically named workgroup machines

Hello Experts -

I've hit a couple brick walls with WSUS.  My enviornment consists of several off domain workgroups, and thoes workgroups share uniquely named servers within them.

For a number of reasons; thoes workgroup server names cannot be changed.  The problem I'm up against now is getting WSUS to reconize them all as unique machines.  It will only keep one instance of the commonly named workgorup server listed in the console.

If I wuauclt /resetauthorization /detectnow on a particular machine, it will indeed populate in WSUS, but overrighting the other same-name server (they all have unique IP).

Any help here?

0
rita_corp
Asked:
rita_corp
  • 7
  • 3
1 Solution
 
Donald StewartNetwork AdministratorCommented:
Run the script found here on them

http://msmvps.com/blogs/athif/pages/66376.aspx

============================================

@echo off
Echo Save the batch file "AU_Clean_SID.cmd". This batch file will do the following:
Echo 1.    Stops the wuauserv service
Echo 2.    Deletes the AccountDomainSid registry key (if it exists)
Echo 3.    Deletes the PingID registry key (if it exists)
Echo 4.    Deletes the SusClientId registry key (if it exists)
Echo 5.    Restarts the wuauserv service
Echo 6.    Resets the Authorization Cookie
Echo 7.    More information on http://msmvps.com/Athif
Pause
@echo on
net stop wuauserv
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v AccountDomainSid /f
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v PingID /f
REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v SusClientId /f
net start wuauserv
wuauclt /resetauthorization /detectnow
Pause

============================================

0
 
Donald StewartNetwork AdministratorCommented:
If that doesnt work you will have to rename
0
 
rita_corpAuthor Commented:
I've run this multiple times; with the following result:

Machine A is only showing in the WSUS console:

Run above script on Machine B

Machine B is only showing in WSUS console

Change name of Machine A to something Unique and run script

Machine A and B both show in console.

In production, I cannot change the machine names

Thanks, let me know if I can provide more info!
0
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

 
Donald StewartNetwork AdministratorCommented:
You're gonna have to explain the reasoning for duplicate machine names
0
 
rita_corpAuthor Commented:
Trust me I know it's hard to offer that as a given; but thoes machines live in off-domain workgroups and are host to a number of thin client apps that make static reference to a particular name.  Changing the name would essentially be chaning the blood type of our Business Centers.  All things considered, Windows Updates/WSUS has been the only caveat in the operation.  I was hoping there was an EPO way, but haven't found one yet.  EPO generates a guid based of an unique identifier generate by the Mcafee Agent... I was hoping the WU agent did something simiar; I understand it's tied ot SID, but have ensured unqiue SID (sysprep loads etc) across all target workstation servers.

TRUELY hoping for a way to make this work but would absolutley settle for a way to customize windows update Agent on the Client computers so that it only pull/ download/and installs critical updates (from microsoft, not WSUS) that are x amount of days OLD.  (to give us time to let them hit a lab site and see if they sit well).  Is that possible?

Thanks for all your help
0
 
Donald StewartNetwork AdministratorCommented:
You should take a look at WUInstall

http://wuinstall.com/
0
 
Donald StewartNetwork AdministratorCommented:
Do the workstations have the latest windows update agent ? That could also be the problem
0
 
Donald StewartNetwork AdministratorCommented:
Here's another option you could use as well


Windows Update Agent force script, email results version 2.6

http://community.spiceworks.com/scripts/show/82-windows-update-agent-force-script-email-results-version-2-6
0
 
rita_corpAuthor Commented:
WUinstall looks promising; anything in this vein

http://support.microsoft.com/kb/262841?

re:  command line driven windows updates?
0
 
Donald StewartNetwork AdministratorCommented:
With Wuinstall you dont need the individual command line options. I believe it uses the same thing as Qchain


http://support.microsoft.com/kb/296861
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 7
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now