Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

SCCM 2012 Software Updates - clients stuck Active/Passed

Posted on 2014-12-23
11
Medium Priority
?
8,748 Views
Last Modified: 2016-03-15
I've tried deploying some Windows updates to a collection which has no maintenance window. but they're not getting the updates.
Interestingly even my own system, which is a member of said collection, is also not getting any updates.

Deadline of deployment was "As soon as possible" but the clients in the Deployment Monitoring area just show "Unknown" (Client check passed/Active).
Can't speed it up by running actions locally, does nothing.

Only things I can gather so far which might indicate a problem are from the following areas, and I'm still not sure what these mean or if they have any bearing on this issue:

UpdateTrustedSites.log, just repeatedly shows:
Starting UpdateTrustedSites with   S-1-5-21-3601230794-2690829250-819315581-7378
AddDefaultPortalToTrustedSites: Existing URL is empty or add to trusted sites is true and the default URL hasn't changed. Not deleting the existing URL from trusted sites list.
AddDefaultPortalToTrustedSites: It was determined that catalog Url should not be added to the trusted sites zone.

So I ran "Deployment Monitoring Tool" on my local system, and I indeed show the Microsoft Software Updates deployment as a deployment to my system, but the "State" column shows "ASSIGNMENT_EVALUATION_ASSIGNMENT_EVALUATE_FAILED".

Again, I don't know if these 2 areas are related, and/or if either of them have any bearing on my issue of updates not being deployed, so I'm checking here for help!

I've also tried uninstalling my client and re-installing, but no luck.
0
Comment
Question by:garryshape
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 4
11 Comments
 
LVL 24

Accepted Solution

by:
Nagendra Pratap Singh earned 2000 total points
ID: 40515951
Please upload WUAHandler.log from your machine here as an attachment.
0
 

Author Comment

by:garryshape
ID: 40515966
The WUAHandler on my client appears to only contain the following:

CWuaHandler::SetCategoriesForStateReportingExclusion called with E0789628-CE08-4437-BE74-2495B842F43B;E0789628-CE08-4437-BE74-2495B842F43B,A38C835C-2950-4E87-86CC-6911A52C34A3; for leaves and E0789628-CE08-4437-BE74-2495B842F43B,A38C835C-2950-4E87-86CC-6911A52C34A3; for bundles      WUAHandler      12/23/2014 4:01:29 PM      19544 (0x4C58)
0
 
LVL 24

Expert Comment

by:Nagendra Pratap Singh
ID: 40515971
Is any collection getting updates at all?
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:garryshape
ID: 40515974
I have a baseline that's deployed and is working fine
But as for this Software Updates deployment, the collection is 11 computers and they've deployed to in the past just fine. But now they just sit in unknown state indefinitely it seems.

The last thing I remember happening before this was WSUS was uninstalled for some reason, then re-installed. Then WSUS reset command was run to reset all meta deta because the updates weren't showing up in SCCM.
But I created this Software Update package after that so it's definitely the right updates that are needed
0
 
LVL 24

Expert Comment

by:Nagendra Pratap Singh
ID: 40515999
So what happens if you put a totally fresh machine in this collection?

I guess your SCCM DB is out of sync. You are offering version 11 or so and the clients expect version 670 or similar.

I have seen issues like this earlier.

Please see the following thread and also post ScanAgent.log after enabling debug logging


https://social.technet.microsoft.com/Forums/en-US/7e017afd-cdc8-4387-863e-da7bbd74bad8/sccm-2012-r2-wsus-clients-not-updating-after-upgrading-to-cmr2?forum=configmanagersecurity


0
 

Author Comment

by:garryshape
ID: 40516480
Thanks for follow-up. Do I still need to enable debug logging somewhere?
I did check ScanAgent.log on my system and it shows:

Warning: No valid source found for the update with SourceId = {D6192AA5-3B5E-4481-BB38-01368E4902A5}      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
Found CategoryID of :bfe5b177-a086-47a0-b102-097e4fa1f807 for Update:fea97a5b-09b9-42f9-9a76-f797494e7f9f      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
CScanAgent::ScanByUpdates - Found UpdateClassification 0fa1201d-4330-4fa8-8ae9-b877473b6441 for Update:fea97a5b-09b9-42f9-9a76-f797494e7f9f      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
Warning: No valid source found for the update with SourceId = {D6192AA5-3B5E-4481-BB38-01368E4902A5}      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
Found CategoryID of :bfe5b177-a086-47a0-b102-097e4fa1f807 for Update:fecc2a9c-8b48-4c42-95d9-3109977b5b6d      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
CScanAgent::ScanByUpdates - Found UpdateClassification 0fa1201d-4330-4fa8-8ae9-b877473b6441 for Update:fecc2a9c-8b48-4c42-95d9-3109977b5b6d      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
Warning: No valid source found for the update with SourceId = {D6192AA5-3B5E-4481-BB38-01368E4902A5}      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
CScanAgent::ScanByUpdates - Update Source Policies not found no scan will be performed, returning E_FAIL_POLICY_NOT_FOUND      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
CUpdatesScan::ScanByUpdates - failed at call to CScanAgent::ScanByUpdates(), error=0x87d00600      ScanAgent      12/23/2014 6:34:04 PM      8320 (0x2080)
0
 

Author Comment

by:garryshape
ID: 40516704
I am trying it now but I'm getting different instructions from this site
http://www.infralib.com/2014/02/enable-verbose-logging-sccm-client-application-deployment-troubleshooting-2/

I'm not sure how long I need to wait before the log files starts showing more details
0
 

Author Comment

by:garryshape
ID: 40516818
Still waiting on this log file to show some more activity but I did find this on one of the SCCM Components SMS_WSUS_SYNC_MANAGER:

Severity      Type      Site code      Date / Time      System      Component      Message ID      Description
      SMS_WSUS_SYNC_MANAGER      6703       WSUS Synchronization failed.   Message: UssNotFound: WebException: The request failed with HTTP status 404: Not Found.  at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall).   Source: Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WsusSyncAction.WSyncAction.SyncWSUS.
0
 

Author Comment

by:garryshape
ID: 40518521
How can I just completely remove the Software Update and WSUS stuff?

I'm on Server 2012

I'd rather just do that because the log files aren't showing any up to date stuff and I got that critical error for WSUS Sync in SCCM logs. I never meant for this to be a complicated setup I just want it to start over and work like it did before.
0
 
LVL 24

Assisted Solution

by:Nagendra Pratap Singh
Nagendra Pratap Singh earned 2000 total points
ID: 40523445
Remove SUP role.
Remove WSUS
Reboot

Install WSUS
Install SUP.
0
 

Expert Comment

by:ppmchgo
ID: 41508370
I had this issue with my latest software update group.  I deployed the SUG to the following collections:
1. Collection 1 for beta - successful
2. Smaller group of business units - successful
3. Production computers - partially successful

I removed some expired updates from the software update group before all the computers were compliant.  THis seems to have corrupted the deployment.  I deleted the deployments and created and deployed a new software update group containing the same updates and it seems to be working now.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many companies are making the switch from Microsoft to Google Apps (https://www.google.com/work/apps/business/). Use this article to learn more about what Google Apps has to offer and to help if you’re planning on migrating to Google Apps. It is …
This collection of functions covers all the normal rounding methods of just about any numeric value.
The viewer will learn how to simulate a series of coin tosses with the rand() function and learn how to make these “tosses” depend on a predetermined probability. Flipping Coins in Excel: Enter =RAND() into cell A2: Recalculate the random variable…
The viewer will learn how to simulate a series of sales calls dependent on a single skill level and learn how to simulate a series of sales calls dependent on two skill levels. Simulating Independent Sales Calls: Enter .75 into cell C2 – “skill leve…

609 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question