Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

WSUS and patching with Powershell

Posted on 2013-11-25
7
Medium Priority
?
739 Views
Last Modified: 2016-02-20
Hello,

I'm setting up a WSUS server to patch my Windows servers, but the problem I am running into is actually scheduling the patches to coincide with our maintenance window once a month.  WSUS doesn't allow for that type of schedule so I thought a way around this would be to have the servers check into the WSUS for patches and download them but not install automatically.  Then on our maintenance window I can schedule a task to run a Powershell script to initiate the install and reboot at the appropriate times.  I've tried to find a solution to this but have been unsuccessful.

Has anyone worked around this limitation in WSUS, or know of a way to kick off the install with Powershell?  I want to be able to start the tasks on the servers from one central server.

I appreciate any help you can give.  Thanks!
0
Comment
Question by:flatleyld
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 39676091
...but the problem I am running into is actually scheduling the patches to coincide with our maintenance window once a month.  WSUS doesn't allow for that type of schedule...

???

Option  4 - Auto download and schedule the install

http://technet.microsoft.com/en-us/library/cc512630.aspx
0
 
LVL 40

Assisted Solution

by:Subsun
Subsun earned 300 total points
ID: 39676093
There is a PowerShell utility PoshPAIG.tool, you can check and see if it works for you..

http://blogs.technet.com/b/heyscriptingguy/archive/2011/08/13/use-powershell-to-audit-and-install-windows-patches.aspx
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 39676095
4 - Auto download and schedule the install
This policy option works very well in environments where known business hours and maintenance windows are fairly stable and predictable. For systems in an environment with predictable usage schedules, downloading in the background and setting a scheduled installation to occur at specific hours after core business works well for environments with static systems that are left on or in energy-saving modes. If this policy is enabled, the default time for the scheduled install is 3:00 A.M. once a day. If an update requires a reboot in order to complete installation, the client will automatically reboot. If an administrative user happens to be logged on during this time, they will see a restart notification and have the option to delay the reboot. Non-administrative users will see the notification (enabling them to save their work). They will not be able to delay the restart, but they can initiate the reboot.
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 47

Expert Comment

by:Donald Stewart
ID: 39676100
Sorry...missed that you wanted once a month :(
0
 
LVL 47

Assisted Solution

by:Donald Stewart
Donald Stewart earned 300 total points
ID: 39676104
This is a good option for you

http://www.wuinstall.com/
0
 

Accepted Solution

by:
flatleyld earned 0 total points
ID: 39690040
I found a program called BatchPatch This gets me around my issue of scheduling the installs to take place.
0
 

Author Closing Comment

by:flatleyld
ID: 39702867
It provided the best work around to my original issue.  It didn't solve it how I wanted, but works another way.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The following article is comprised of the pearls we have garnered deploying virtualization solutions since Virtual Server 2005 and subsequent 2008 RTM+ Hyper-V in standalone and clustered environments.
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question