SCCM 2012 Not deploying all updates

Posted on 2013-06-20
Last Modified: 2013-06-29
Hello everyone, I am having an issue getting SCCM 2012 sp1 to deploy all updates to our managed computers. I have been working with Microsoft Support for over a week and this issue is not getting resolved. We are using Automatic Deployment rules and running them, and they will not pick up and deploy all updates. I see them in the catalog, I'm seeing that it's registering that clients require them, but they are neither downloaded, or deployed. We've triple checked the rule is setup to pick these updates up, and deploy them, but it's just not happening.
It is deploying some updates however so I know the communication, and deployment packages are working. It's just after I receive the notification that my machine has installed updates, I go to; "Check for Windows Updates online" and it will come back with tons of critical updates.
I am attaching some screen shots of how the rule is setup. Any suggestions would be greatly appreciated.
Thanks or your time
Question by:sobrsu
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Expert Comment

ID: 39263731

Those settings look good to me, have you tried enabling the option "Wake on LAN'?

I had the exact same issue when I tested the Eval of SCCM 2012 but for some reason I couldn't get it to work either.

Is your WSUS server the same server your SCCM 2012 server?
Is there any GPO(s) setup/defined for System Updates? If so you may want to disable them for now to test because GPO>SCCM rules.

Good LUCK!!

Expert Comment

ID: 39263795
Agree with the WOL setting, but not only within SCCM but the client-side, as well.

Author Comment

ID: 39263960
I have not tried the WOL setting, but one of the clients I am trying to run these updates on does not sleep, and does not get certain updates (kb2783534, kb2727528, etc..) Our WSUS server is on the same machine as our SCCM server, and there is no defined policy in GP to set updates.
Again my machines are getting updates, just not all of them. It seems to be skipping over some "Critical Updates" here and there. Any other ideas, or tips on where to look? Could it be something to do with the fact the product still hasn't been activated?
MS Dynamics Made Instantly Simpler

Make Your Microsoft Dynamics Investment Count  & Drastically Decrease Training Time by Providing Intuitive Step-By-Step WalkThru Tutorials.


Expert Comment

ID: 39264660
Not being activated could play a role into it because once it is past the activation grace period the OS shuts down some features.

Make sure those KBs are part of your ADR specifications as well.

Author Comment

ID: 39266383
Okay I will activate, and try it out.

Thank you
LVL 17

Expert Comment

by:Mike T
ID: 39267326

Activating the OS is definitely going to affect things.
I recently set SUP up and had issues with nothing new installing because WSUS had a sync error. Once that was resolved everything worked.

Also make sure the patches all appear in the console as "downloaded" = yes. Microsoft call it provisioning.

To test you could forget the ADR and just create an update group + package with a few of the missing patches and target a collection of a machine or two. When in doubt, simplify.

Finally the WindowsUpdate.log (in Windows) is invaluable. The ccm\logs are OK but WindowsUpdate is the one to watch.

PS: I noticed you ticked the bottom two options "get from Microsoft if nothing works" and "use this link even if you have to pay for it" - I'm guessing you checked those as things were not happening but things will work without those. They were added in SP1 just for extreme cases.

Accepted Solution

sobrsu earned 0 total points
ID: 39271789
Well After activating SCCM 2012 the updates still did not work. What did work was creating a new ADR with a new source directory for the updates. It took a whole day for SCCM to download and package all the updates, but after some time, my machines got their vital OS patches, and all the site components returned to an "ok" status. Thank you all for your help.

Author Closing Comment

ID: 39286386
accepted as solution because the information in my comment was what resolved the problem.

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Use System DSN 6 91
Unable to view Outlook 2013 calendar 2 81
Locks on MS Access DB not being released 9 93
Microsoft License Verification Process?? 12 883
Article by: Leon
Software Metering within our group of companies has always been an afterthought until auditing of software and licensing became a pain point. Orchestrator and SCCM metering gave us the answer and it was an exciting process.
Deploying a Microsoft Access application in a Citrix environment is not difficult but takes a few steps. However, Citrix system people are often of little help, as they typically know next to nothing about Access. The script provided here will take …
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question