MJB2011
asked on
WSUS - Planning and remote users
Hi all,
At the moment we have no control over Windows updates on our networks. They are just set to auto update.
I have 4 sites that I plan to have local WSUS servers setup. My main problem is remote users. I have a number of laptops that connect via VPN daily, and some very rarely. SO my questions are:
1) What woudl be the best way to configure for laptops?
2) I was going to setup group polices for the different site severs filtered by IP scope for each site, is this a good idea?
3) Current WSUS server is 2008 wsus3 sp2 - should I upgrade to 2012 now for Win 8.1 compatibility?
At the moment we have no control over Windows updates on our networks. They are just set to auto update.
I have 4 sites that I plan to have local WSUS servers setup. My main problem is remote users. I have a number of laptops that connect via VPN daily, and some very rarely. SO my questions are:
1) What woudl be the best way to configure for laptops?
2) I was going to setup group polices for the different site severs filtered by IP scope for each site, is this a good idea?
3) Current WSUS server is 2008 wsus3 sp2 - should I upgrade to 2012 now for Win 8.1 compatibility?
ASKER
Web server not an option unfortunately.
ASKER
Fall back although useful, isnt going to help, as when user is on VPN they will still see the WSUS and drag updates across VPN rather than heading to microsoft.
So you want all your users to point to Microsoft only? Even though they connect to VPN?
ASKER
Basically I need some how to change the server they are looking at depending on whether they are in the office or at home. when they are at home they could either connect to a wsus server at our VPN termination site or go to Microsoft.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
With regards to the version of windows server, there's no need to upgrade. WSUS is simply a database of updates synced with Microsoft, if they are available on Windows Update they should theoretically be available to the WSUS server whether it's running Server 2012, 2008 or even 2003. Just make sure the WSUS software is up to date.