Solved

2008 sbs wsus

Posted on 2014-10-13
17
147 Views
Last Modified: 2016-02-19
I have a new client with a 2008 sbs,
The WSUS is broken. The console wont connect to the server.
I have read so many posts with a lot of different approaches to fixing the issue but there does not seem to be a common fix.
They want to replace the server but while we work on that I would like to have the server and workstations revert back to windows updates.


Thanks,

Rob
0
Comment
Question by:Dr_Rob
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 10
  • 7
17 Comments
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40378151
Remove the  "specify intranet microsoft update service location" group policy


http://technet.microsoft.com/en-us/library/cc720539%28v=ws.10%29.aspx
0
 

Author Comment

by:Dr_Rob
ID: 40378500
This policy is not active ( undefined) by default.

Also since the WSUS does not work adding the dead WSUS servers name will not help.
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40379861
"This policy is not active ( undefined) by default."

Then the clients will be getting their updates from Microsoft.

From any client, what do you get from a cmd prompt ??

 reg query HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate /s
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:Dr_Rob
ID: 40381034
They are pointing to the WSUS server, which does not work.

The workstations will not run a manual windows update, they throw an error
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40381375
"They are pointing to the WSUS server, which does not work."
 
^^Contradicts your previous comment  "This policy is not active ( undefined) by default."

You should run rsop.msc to find the gpo that is pointing them to WSUS
0
 

Author Comment

by:Dr_Rob
ID: 40389301
I ran the requested rsop and it does show enabled in there.

Perhaps I am looking in the wrong spot in the GPM. Pleas give me the exact location of the policy or policies I need to turn off or change
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40391181
Computer Configuration>> Administrative Templates>>Windows Components,>> Windows Update>> Specify Intranet Microsoft update service location
0
 

Author Comment

by:Dr_Rob
ID: 40392149
Please provide the FULL path, what policy am I starting with to edit
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40392228
When you ran rsop.msc, you should then follow "Computer Configuration>> Administrative Templates>>Windows Components,>> Windows Update>>"

You may need to scroll over to the right, but you will then see the "GPO Name" that you want to edit
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40392236
wsus
0
 

Author Comment

by:Dr_Rob
ID: 40392257
In my rsop screen. I showed the three policies separate for Windows update. I was able to rt click on these polices and select disable.
After which I ran a gpupdate /force.

By disabling all three I am able to get the server and workstations to update on there own.

Do you know where the original policies are in the GP management without using the RSOP?
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40392351
What does your rsop say under "GPO NAME" ???

That will be the name of the GPO that these policies are defined under
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40392360
It should be one of the following


    Update Services Client Computers Policy
    Update Services Common Settings Policy
    Update Services Server Computers Policy
0
 

Author Comment

by:Dr_Rob
ID: 40392516
Now that I have disabled these policies they no longer show up under rsop.

As I have repeatedly asked and not received an answer too.


"Do you know EXACTLY where the original policies are in the GP management without using the RSOP?"

If you don't know the answer please just say so.
0
 
LVL 47

Accepted Solution

by:
Donald Stewart earned 500 total points
ID: 40392530
Sorry, but the reason I told you to use RSOP....is because each administrator names their policies differently. So NO, there was no way for me to tell you where the original policies are.  SBS does have default policies http://blogs.technet.com/b/sbs/archive/2009/09/03/how-to-manually-create-the-sbs-2008-and-wsus-group-policies-objects.aspx
0
 

Author Closing Comment

by:Dr_Rob
ID: 40392545
It would be helpful in the future to fully read the questions that are asked and answer them.

If you don't know the answer, please say so or if you need more clarification just ask
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 40392725
Your question was " I would like to have the server and workstations revert back to windows updates."

My answer was  "Remove the  "specify intranet microsoft update service location" group policy"

Using RSOP.msc tells you exactly which GPO is providing that setting
0

Featured Post

MIM Survival Guide for Service Desk Managers

Major incidents can send mastered service desk processes into disorder. Systems and tools produce the data needed to resolve these incidents, but your challenge is getting that information to the right people fast. Check out the Survival Guide and begin bringing order to chaos.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Preface There are many applications where some computing systems need have their system clocks running synchronized within a small margin and eventually need to be in sync with the global time. There are different solutions for this, i.e. the W3…
This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question