Solved

SCCM 2012 Not deploying all updates

Posted on 2013-06-20
8
2,485 Views
Last Modified: 2013-06-29
Hello everyone, I am having an issue getting SCCM 2012 sp1 to deploy all updates to our managed computers. I have been working with Microsoft Support for over a week and this issue is not getting resolved. We are using Automatic Deployment rules and running them, and they will not pick up and deploy all updates. I see them in the catalog, I'm seeing that it's registering that clients require them, but they are neither downloaded, or deployed. We've triple checked the rule is setup to pick these updates up, and deploy them, but it's just not happening.
It is deploying some updates however so I know the communication, and deployment packages are working. It's just after I receive the notification that my machine has installed updates, I go to; "Check for Windows Updates online" and it will come back with tons of critical updates.
I am attaching some screen shots of how the rule is setup. Any suggestions would be greatly appreciated.
Thanks or your time
general.PNG
deployment-settings.PNG
software-updates.PNG
download-settings.PNG
0
Comment
Question by:sobrsu
8 Comments
 
LVL 4

Expert Comment

by:TechOps07
ID: 39263731
sobrsu,

Those settings look good to me, have you tried enabling the option "Wake on LAN'?

I had the exact same issue when I tested the Eval of SCCM 2012 but for some reason I couldn't get it to work either.

Is your WSUS server the same server your SCCM 2012 server?
Is there any GPO(s) setup/defined for System Updates? If so you may want to disable them for now to test because GPO>SCCM rules.

Good LUCK!!
0
 

Expert Comment

by:mrbcam21
ID: 39263795
Agree with the WOL setting, but not only within SCCM but the client-side, as well.
0
 

Author Comment

by:sobrsu
ID: 39263960
I have not tried the WOL setting, but one of the clients I am trying to run these updates on does not sleep, and does not get certain updates (kb2783534, kb2727528, etc..) Our WSUS server is on the same machine as our SCCM server, and there is no defined policy in GP to set updates.
Again my machines are getting updates, just not all of them. It seems to be skipping over some "Critical Updates" here and there. Any other ideas, or tips on where to look? Could it be something to do with the fact the product still hasn't been activated?
0
 
LVL 4

Expert Comment

by:TechOps07
ID: 39264660
Not being activated could play a role into it because once it is past the activation grace period the OS shuts down some features.

Make sure those KBs are part of your ADR specifications as well.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 

Author Comment

by:sobrsu
ID: 39266383
Okay I will activate, and try it out.

Thank you
0
 
LVL 17

Expert Comment

by:Mike T
ID: 39267326
Hi

Activating the OS is definitely going to affect things.
I recently set SUP up and had issues with nothing new installing because WSUS had a sync error. Once that was resolved everything worked.

Also make sure the patches all appear in the console as "downloaded" = yes. Microsoft call it provisioning.

To test you could forget the ADR and just create an update group + package with a few of the missing patches and target a collection of a machine or two. When in doubt, simplify.

Finally the WindowsUpdate.log (in Windows) is invaluable. The ccm\logs are OK but WindowsUpdate is the one to watch.

Mike
PS: I noticed you ticked the bottom two options "get from Microsoft if nothing works" and "use this link even if you have to pay for it" - I'm guessing you checked those as things were not happening but things will work without those. They were added in SP1 just for extreme cases.
0
 

Accepted Solution

by:
sobrsu earned 0 total points
ID: 39271789
Well After activating SCCM 2012 the updates still did not work. What did work was creating a new ADR with a new source directory for the updates. It took a whole day for SCCM to download and package all the updates, but after some time, my machines got their vital OS patches, and all the site components returned to an "ok" status. Thank you all for your help.
0
 

Author Closing Comment

by:sobrsu
ID: 39286386
accepted as solution because the information in my comment was what resolved the problem.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many companies are making the switch from Microsoft to Google Apps (https://www.google.com/work/apps/business/). Use this article to learn more about what Google Apps has to offer and to help if you’re planning on migrating to Google Apps. It is …
Article by: Leon
Software Metering within our group of companies has always been an afterthought until auditing of software and licensing became a pain point. Orchestrator and SCCM metering gave us the answer and it was an exciting process.
Viewers will learn how to maximize accessibility options in an Excel workbook for users with accessibility issues.
The viewer will learn how to use the =DISCRINV command to create a discrete random variable, use this command to model a set of probabilities and outcomes in a Monte Carlo simulation, and learn how to find the standard deviation of a set of probabil…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now