Solved

WSUS connectivity

Posted on 2013-01-31
4
277 Views
Last Modified: 2016-02-20
I have a non domain window 2003 sp2, and there is a domain connected WSUS (2k3 as well). Is it possible to push updates to the non domain windows server ? if so how can I do this ?
0
Comment
Question by:shadow2007
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 

Assisted Solution

by:chichaoff
chichaoff earned 166 total points
ID: 38840814
On you workgroup computers, run regedit to open registry editor, navigate to
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\windows\WindowsUpdate

You also need to create/configure the UseWUServer registry value in the subkey
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU with dword:0x1

in order to cause the WUAgent to read the other two values (WUServer and WUStatusServer). If UseWUServer is absent, or false, the WUAgent will continue to update from Automatic Update (if configured to update at all).

Configure WUServer and WUStatusserver as the URL of your WSUS server with the port number.

After configuring, run "wuauclt /detectnow" to force the communication.
Reply  Quote
0
 
LVL 4

Accepted Solution

by:
AnthonyHamon earned 167 total points
ID: 38840899
This is possible.  As your Windows Server 2003 machine is not on the domain, you need to configure AU using Local Group Policy, as follows:

Run gpedit.msc
Open the User Configuration branch of the tree
Right-click Administrative Templates and select Add/Remove Templates
Select wuau and click Add.  Click wuau.adm in the Policy Templates dialog box and click Open
To view all the AU configuration policy options in the Group Policy Object Editor, go to Computer Configuration -> Administrative Templates -> Windows Components -> Windows Update
Select 'Specify intranet Microsoft update service location' and specify the address of your WSUS server
Amend any of the other AU policy settings, as required
Restart your server
Run wuauclt /detectnow
Check the C:\Windows\WindowsUpdate.log file to ensure that the server was able to connect to your domain based WSUS server
0
 
LVL 12

Assisted Solution

by:Sandeep
Sandeep earned 167 total points
ID: 38840962
You have to set Local GPO for that machine.

You can access it through gpedit.msc as advised above.

Go to Computer Configuration->Administrative Templates->Windows Components->Windows Update

Over here you will find several values in which there are few important which requires to be set. There are others too but below are important, if Configure Automatic Updates is set to disabled, even after providing WSUS IP, server will not look to detect Windows Update.

Configure Automatic Updates - Enable this, and select default option 3 Auto Download and notify for install.
Specify intranet Microsoft update service location - Provide WSUS Server IP as http://ServerIP

Once this one is done, reboot your PC.
Run command wuauclt /detectnow - This will detect new patches from WSUS Server.
wuauclt /reportnow  - This will report the status to the WSUS Server about patches.

Hope this Helps.
0
 
LVL 55

Expert Comment

by:McKnife
ID: 38844773
...and if you don't want to reboot your server (which I can imagine), simply restart your update service to enable the new settings. wuauclt /detectnow alone will not do this, by the way.
0

Featured Post

Get Actionable Data from Your Monitoring Solution

Your communication platform is only as good as the relevance of the information you send. Ensure your alerts get to the right people every time with actionable responses. Create escalation rules that ensure everyone follows the process and nothing is left to chance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

687 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question