I have a Windows Server 2012 domain, and a group of PCs with Windows 10 Pro that belong to that domain.
My goal is to have all the PCs in the domain to run the Windows Update Service one day of the week (ideally Friday) contact the local WSUS Server (which is the same domain controller where they are being authenticated) and then force them to restart when they finish.
All of this should happen at 3:00AM without any user intervention.
I have installed WSUS in my Windows Server Domain Controller.
I have setup the all the GPOs below (at the end of this message).
Yesterday the test PC was detected by the WSUS, and the report told me that there were 5 updates needed and approved ready for installation, so I left yesterday very happy thinking that the windows updates were going to be applied and the PC was going to restart at 3:00AM.
Oh surprise when I arrived this morning and no Windows Updates were applied and the PC was not restarted.
Do you have a step by step guide on how to do this?
What am I doing wrong?
This is a list of all the GPOs I created and applied to the test computer:
\ Computer Config \ Policies \ Admin Templates \ Windows Components \ Windows Update
Always automatically restart at the scheduled time: Enabled (15 minutes)
Configure Automatic Updates: Enabled
4 - Auto download and schedule the install
Install during automatic maintenance: Disabled
Scheduled install day: 6 - Every Friday
Scheduled install time: 03:00
Do not connect to any Windows Update Internet locations: Enabled
Enable client-side targeting: Enabled (mygroupname)
Specify intranet Microsoft update service location: Enabled
Turn off the upgrade to the latest version of Windows through Windows Update: Enabled
Any help will be greatly appreciated.