• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 544
  • Last Modified:

Tips for configuring updates that WSUS manages...

I have installed my first WSUS server on Server 2012 (WSUS 6.2 I believe).

Everything seems to be OK.  I have a test GPO and machines will check in.  The part that is overwhelming me is the sheer amount of updates that have been imported for management.  

I selected just the products that I want patched (Windows (client and server), SQL, etc), but there are still over 6400 updates.

Should I just approve all 6400+ of them?  The hard drive on this server is not very big, so that's a bit of a concern for me.

Short of going through the updates one by one, it seems like there should be a better way than blanket approving 6400+ updates...

What do you folks say?
0
Jared Luker
Asked:
Jared Luker
  • 3
  • 2
2 Solutions
 
kevinhsiehCommented:
You can look at the computers and approve the ones that are needed. I personally let WSUS approve all needed patches. I don't have time to go researching every patch, or to even look at WSUS on a monthly basis.
0
 
Jared LukerAuthor Commented:
Where do you set up those preferences?
0
 
kevinhsiehCommented:
Under WSUS 3.0, go to your WSUS console, and in the left hand pane under your WSUS server go to Options, and then Automatic Approvals in the center pane. My default rule is to approve Critical Updates, Security Updates, Update Rollups, and Updates. You may or may not want to add any of the others such as hot fixes and Service Packs.

I image that the interface is similar in your version.
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Jared LukerAuthor Commented:
I'm just curious.  If you blanket accept everything, then why use WSUS at all?  Why not just use Windows Update?
0
 
Jared LukerAuthor Commented:
Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Certified Penetration Testing

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now