This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.
Solved
WSUS removal in SBS 2008 and now cant do windows update
Posted on 2012-12-20
Hi, I just took over a SBS2008 server and the previous admin had removed WSUS from it (not appearing on the add remove programs list) as it was taking up to much space on the server.
However since then none of the client pcs nor the server can check for updates. Also if we try to check manually for updates it wont let us install. says error 80072EFD Windows encountered a unknown error
Also when doing a manual update, the systems still say that the windows updates are managed by system administrator.
Any help ?
However since then none of the client pcs nor the server can check for updates. Also if we try to check manually for updates it wont let us install. says error 80072EFD Windows encountered a unknown error
Also when doing a manual update, the systems still say that the windows updates are managed by system administrator.
Any help ?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
6 Comments
Hi,
Yes that is quite normal because after removal they must forget to default the Group Policies related to this.
Please open Group Policy Management console and navigate to Computer Configuration-Administarti
1-Specify intranet Microsoft update service location
2-Set the intranet update service for detecting updates
3-Set the intranet statistics server
4-Check for updates at the following interval (hours): 20
Also there might be some special policies such as when updates will be checked, update installation automatic or manual etc.
Yes that is quite normal because after removal they must forget to default the Group Policies related to this.
Please open Group Policy Management console and navigate to Computer Configuration-Administarti
1-Specify intranet Microsoft update service location
2-Set the intranet update service for detecting updates
3-Set the intranet statistics server
4-Check for updates at the following interval (hours): 20
Also there might be some special policies such as when updates will be checked, update installation automatic or manual etc.
sorry for the delayed response. When i open the GPM all i see is
Forest
and the domain
Sorry a bit lost here
gpm.png
Forest
and the domain
Sorry a bit lost here
gpm.png
Active today
I guess this was neglected by the helper.
From your image you will need to expand the Domain Node and locate the GPO that has the settings.
It is a computer configuration GPO so you are looking for a GPO linked to the OU with the Computers and/or Servers.
If you want to take a screenshot the Domain Node expanded maybe the naming convention the previous ADMIN can be isolated with this setting we are looking for.
Change all settings to Not configured.
To try and test without making any changes I recommend creating a completely new OU with Blocked GP Inheritance.
Open ADUC (Active Directory Users & Computers MMC)
Right click on the Domain and select New
Name it (example: Sterile)
Then move one of your workstations into this OU for testing
Then Open GPMC again and block inheritance.
Locate the OU just created > Right click on it and select Block Inheritance.
Once you have done this run GPUPDATE /FORCE on the computer that you moved into the Sterile OU > Restart.
Next you want to confirm that there are no setting of the old Link GPO still set.
Open the Registry to HKEY_LOCAL_MACHINE\SOFTWAR
Make sure you do not see any values pointing to local server like https://SBS2008:8530 or Target Group.
You may need to run Windows System Readiness Tool as well at the end of this.
Make sure you run the proper flavor of the tool
http://www.microsoft.com/en-us/download/details.aspx?id=3132 (32Bit)
http://www.microsoft.com/en-us/download/details.aspx?id=20858(64Bit)
From your image you will need to expand the Domain Node and locate the GPO that has the settings.
It is a computer configuration GPO so you are looking for a GPO linked to the OU with the Computers and/or Servers.
If you want to take a screenshot the Domain Node expanded maybe the naming convention the previous ADMIN can be isolated with this setting we are looking for.
Change all settings to Not configured.
To try and test without making any changes I recommend creating a completely new OU with Blocked GP Inheritance.
Open ADUC (Active Directory Users & Computers MMC)
Right click on the Domain and select New
Name it (example: Sterile)
Then move one of your workstations into this OU for testing
Then Open GPMC again and block inheritance.
Locate the OU just created > Right click on it and select Block Inheritance.
Once you have done this run GPUPDATE /FORCE on the computer that you moved into the Sterile OU > Restart.
Next you want to confirm that there are no setting of the old Link GPO still set.
Open the Registry to HKEY_LOCAL_MACHINE\SOFTWAR
Make sure you do not see any values pointing to local server like https://SBS2008:8530 or Target Group.
You may need to run Windows System Readiness Tool as well at the end of this.
Make sure you run the proper flavor of the tool
http://www.microsoft.com/en-us/download/details.aspx?id=3132 (32Bit)
http://www.microsoft.com/en-us/download/details.aspx?id=20858(64Bit)
Active today
While the question has an accepted answer I'm still going to chime in. Why not simply repair WSUS and use it as designed on SBS? http://technet.microsoft.com/en-us/library/dd443475(v=ws.10).aspx
Probably the easiest repair process in all of SBS.
Probably the easiest repair process in all of SBS.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
Ever notice how you can't use a new drive in Windows without having Windows assigning a Disk Signature? Ever have a signature collision problem (especially with Virtual Machines?) This article is intended to help you understand what's going on and…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
- Microsoft Legacy OS
- Windows 10
- Windows 8
- Windows OS
- Windows 7
- Windows Vista, Windows XP, Windows 2000, *Windows Explorer, *Internet Explorer (IE)
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
- Microsoft Legacy OS
- Windows 10
- Windows 8
- Windows OS
- Windows 7
- Windows Vista, Windows XP, Windows 2000
Suggested Courses
Course of the Month8 days, 15 hours left to enroll
Earn Certification
MCSA Configuring Windows 7 Exam 70-680
$49.00$44.10
734 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.