Solved

How can I prevent WSUS clients from being able to access Windows Update via the same WSUS GPO

Posted on 2013-06-12
4
498 Views
Last Modified: 2013-06-13
I'm a member of domain administrators group in a Windows 2008 R2 domain. I've configured a GPO that directs the members of an OU to get their MS OS updates from our WSUS server. The GPO appears to be working because all members of the OU appear/have reported on WSUS server as obtaining their updates from it. However, they all still have access to windows update or microsoft update via a IE. Which settings in the GPO am I missing that will prevent the WSUS clients from going to access the web (windows updates) for OS updates?
0
Comment
Question by:cheyliger
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 4

Accepted Solution

by:
Rsilva98 earned 500 total points
ID: 39241648
check here
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 39241651
You're looking for this setting:

Remove links and access to Windows Update

If this policy setting is enabled, Automatic Updates receives updates from the WSUS server. Users who have this policy setting enabled cannot get updates from a Windows Update Web site that you have not approved. If this policy setting is not enabled, the Windows Update icon remains on the Start menu; local administrators will be able to visit the Windows Update Web site, from which they could install unapproved software. This happens even if you have specified that Automatic Updates must get approved updates from your WSUS server. In Windows Vista, this setting will gray out the Check for updates option in the Windows Update application.
0
 

Author Comment

by:cheyliger
ID: 39243199
Hi Rsilva98, thank you very much for providing that link. It was very effective in resolving the issue.
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 39244690
Yeah.....and My comment is the correct answer for those who dont want to read thru another link.
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found listed in my profile here: http:…
This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question