SCCM 2012 Not deploying all updates

Posted on 2013-06-20
Last Modified: 2013-06-29
Hello everyone, I am having an issue getting SCCM 2012 sp1 to deploy all updates to our managed computers. I have been working with Microsoft Support for over a week and this issue is not getting resolved. We are using Automatic Deployment rules and running them, and they will not pick up and deploy all updates. I see them in the catalog, I'm seeing that it's registering that clients require them, but they are neither downloaded, or deployed. We've triple checked the rule is setup to pick these updates up, and deploy them, but it's just not happening.
It is deploying some updates however so I know the communication, and deployment packages are working. It's just after I receive the notification that my machine has installed updates, I go to; "Check for Windows Updates online" and it will come back with tons of critical updates.
I am attaching some screen shots of how the rule is setup. Any suggestions would be greatly appreciated.
Thanks or your time
Question by:sobrsu
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Expert Comment

ID: 39263731

Those settings look good to me, have you tried enabling the option "Wake on LAN'?

I had the exact same issue when I tested the Eval of SCCM 2012 but for some reason I couldn't get it to work either.

Is your WSUS server the same server your SCCM 2012 server?
Is there any GPO(s) setup/defined for System Updates? If so you may want to disable them for now to test because GPO>SCCM rules.

Good LUCK!!

Expert Comment

ID: 39263795
Agree with the WOL setting, but not only within SCCM but the client-side, as well.

Author Comment

ID: 39263960
I have not tried the WOL setting, but one of the clients I am trying to run these updates on does not sleep, and does not get certain updates (kb2783534, kb2727528, etc..) Our WSUS server is on the same machine as our SCCM server, and there is no defined policy in GP to set updates.
Again my machines are getting updates, just not all of them. It seems to be skipping over some "Critical Updates" here and there. Any other ideas, or tips on where to look? Could it be something to do with the fact the product still hasn't been activated?
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.


Expert Comment

ID: 39264660
Not being activated could play a role into it because once it is past the activation grace period the OS shuts down some features.

Make sure those KBs are part of your ADR specifications as well.

Author Comment

ID: 39266383
Okay I will activate, and try it out.

Thank you
LVL 18

Expert Comment

by:Mike T
ID: 39267326

Activating the OS is definitely going to affect things.
I recently set SUP up and had issues with nothing new installing because WSUS had a sync error. Once that was resolved everything worked.

Also make sure the patches all appear in the console as "downloaded" = yes. Microsoft call it provisioning.

To test you could forget the ADR and just create an update group + package with a few of the missing patches and target a collection of a machine or two. When in doubt, simplify.

Finally the WindowsUpdate.log (in Windows) is invaluable. The ccm\logs are OK but WindowsUpdate is the one to watch.

PS: I noticed you ticked the bottom two options "get from Microsoft if nothing works" and "use this link even if you have to pay for it" - I'm guessing you checked those as things were not happening but things will work without those. They were added in SP1 just for extreme cases.

Accepted Solution

sobrsu earned 0 total points
ID: 39271789
Well After activating SCCM 2012 the updates still did not work. What did work was creating a new ADR with a new source directory for the updates. It took a whole day for SCCM to download and package all the updates, but after some time, my machines got their vital OS patches, and all the site components returned to an "ok" status. Thank you all for your help.

Author Closing Comment

ID: 39286386
accepted as solution because the information in my comment was what resolved the problem.

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As with any other System Center product, the installation for the Authoring Tool can be quite a pain sometimes. This article serves to help you avoid making these mistakes and hopefully save you a ton of time on troubleshooting :)  Step 1: Make sur…
Having trouble getting your hands on Dynamics 365 Field Service or Project Service trial? Worry No More!!!
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question