Solved

WSUS question

Posted on 2011-09-09
4
1,991 Views
Last Modified: 2012-08-13
Hi I am getting machines that report to WSUS 3.0 and stating that all the updates are "installed or not applicable" when I know the updates are not installed. When I drill in further it states approval set to install but status is "not applicable" So when I drill into the not applicable it tells me "No events are available. This may be because the client has not yet sent the event or the events have been purged from the server. Please refer to %WINDIR%\WindowsUpdate.log....." I have looked at the log file and I see nothing wrong with the machine. I can post the log if someone needs it. Its a whole site of 400+ machines and will not get any new updates. Thanks for any help you can provide.
0
Comment
Question by:Thomas N
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 

Author Comment

by:Thomas N
ID: 36513784
So basically every machine has a "not applicable" next to every Update, so they are not getting any Updates at all. It has to be some sort of reporting issue but I cant figure out what it could be.
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 36514145
WSUS clients only pull updates that they need. When your WSUS synchronized with microsoft it gets all the headers(information) for ALL updates available based on your "Products and Classifications" settings and language settings.

Have you set up approval rules??

 
http://technet.microsoft.com/en-us/library/cc708458%28WS.10%29.aspx
0
 
LVL 24

Accepted Solution

by:
Sandeshdubey earned 500 total points
ID: 36515486
There is no issue with the Wsus server and client in the report it will show the patches which are not applicable to the client PC will be not installed and hence the remark is not applicable.

The WSUS client will install those patches which is required.Let me explain with the eg consider the patch which you have approved is for win7.In the report if you see the cleint PC is winXP then for the hotfix which you have approved for win7.The staus will be not applicable for winXP client as the hotfix is for WIN7 and not WinXP.

0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 36568901
"The WSUS client will install those patches which is required.Let me explain with the eg consider the patch which you have approved is for win7.In the report if you see the cleint PC is winXP then for the hotfix which you have approved for win7.The staus will be not applicable for winXP client as the hotfix is for WIN7 and not WinXP."


This is WRONG!!!!

A Windows XP client will only detect Windows XP updates!!! It will not detect Windows 7 updates and mark them as "Not Applicable" to XP.

This is the same for each OS, in other words the client PC will only detect updates that match it's OS<<<It does not mark updates "Not Applicable" if they are the wrong OS

"Not Applicable" means that either the update is already applied or that the software that it applies to is not installed(silverlight for example).
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question