Windows 7 clients are not updating or installing updates from WSUS

Have you approved the updates ??
Have the updates finished downloading on your WSUS ??
there is no attached message ???

There was no attachment...

After deploying how long did you wait before you checked if clients were getting updates?

After a client checks in (usually fairly fast) it may take a while before it gets its first round of updates, if the machines are being used during the day then it will happen later...

If you just deployed i would wait a bit before fixing something that may not be broken,...

"...if the machines are being used during the day then it will happen later..."   ???

Wrong!! Windows updates uses BITS, which happens in the background.

BITS is the download portion, it wont to the actual install if the machines are really busy, it will wait until idle times before it will do it...

@calvin22 have you also installed the updates for WSUS 3.0 sp2 ?

https://support.microsoft.com/en-us/kb/2828185

I have installed the updates for WSUS 3.0 sp2.  I installed WSUS yesterday.  I have the GPO pushed to a small group of pc's just for testing purposes right now, approximately 25 Windows 7 and 1 XP machine.  The one XP machine is installing its updates and one Windows 7 is.  I have the GPO set to "Configure Automatic Updates" Everyday at 11:00 so maybe I'm just being a little impatient.  I am going to try to run the wuauclt.exe /detectnow from the command line on some of the other pc's in the test OU to see if I get them to pull the updates.  

Sorry about not attaching the WindowsUpdate.log file, it should be attached now.  I will let you guys know in a little bit if I got the other machines to update.

Thanks
WindowsUpdate.txt

Where's the rest of windowsupdate.log ???
That cant be the whole thing

Is this a VM?

Does the server have plenty of memory?

Since it is pushing out to the xp machine and the win 7 machine, just wait a bit and check some of the other machines.

It is a VM on an ESXI 5.1 host.
WindowsUpdate.log

How much memory have you assigned to the VM?

Have any of the other clients received their updates?

My WSUS has 4 GB of memory.  I have not seen any other workstations in my test OU update from the WSUS.  I just downloaded the update for the client pc's and installed it on three of them.  Just waiting to see if any of them start updating.

The amount of memory a WSUS server has has no bearing on the clients.

@Calvin22 you can speed up the detection time with the following

%Windir%\system32\gpupdate

%Windir%\system32\net.exe stop bits 
%Windir%\system32\net.exe stop wuauserv 
%Windir%\system32\net.exe stop cryptsvc
reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v SusClientId /f
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update" /v LastWaitTimeout /f
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update" /v DetectionStartTime /f
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update" /v NextDetectionTime /f
del %WINDIR%\WindowsUpdate.log /S /Q 
rd /s /q %windir%\softwareDistribution
%Windir%\system32\net.exe start cryptsvc
%Windir%\system32\net.exe start bits 
%Windir%\system32\net.exe start wuauserv 


sc sdset wuauserv D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRRC;;;AU)(A;;CCLCSWRPWPDTLOCRRC;;;PU)


sc sdset bits D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRRC;;;AU)(A;;CCLCSWRPWPDTLOCRRC;;;PU)

wuauclt /resetauthorization /detectnow
wuauclt /reportnow

exit /B 0 

Select allOpen in new window

In the process of installing WSUS and then updating it, did you install KB3148812?

http://blogs.technet.com/b/wsus/archive/2016/04/22/what-you-need-to-know-about-kb3148812-part-two.aspx

Forgot to give you the link to part 1...

http://blogs.technet.com/b/wsus/archive/2016/04/20/known-issues-with-kb3148812.aspx

I have not installed KB3148812.  Right now about half of my workstations have reported in (which is 11 out of 24)  and have downloaded their updates from the WSUS.  I installed the latest Windows client update on six of my workstations that dstewartjr put in a post above and all six have reported in.  Should I just be patient.  I did run the script above on one of my workstations that "has not reported status yet".  I could see it update group policy and in the WindowsUpdate.log communicate with the WSUS and that was about an hour ago and it hasn't shown up in WSUS.
I think I am going to install the Windows client update on the rest of the workstations.  I'll let you guys know how it goes.

Yes install the newest client on all the workstations, and yes be patient, i have seen it take along time to get all the machines caught up with the latest updates. So the initial sync from MS to the WSUS can be very large depending on what updates you want to pull, and then it still needs to push them out to the clients.

i think your good , you just to to wait and let it do its thing.

v

FYI, There is no pushing of updates from a WSUS server. WSUS is a pull technology. Clients query WSUS for the updates.

Also, if clients WUA doesn't match the version on the WSUS server they have problems.
Hence me suggesting to install the latest WUA on the clients.

@dstewarjr:

yes you would be correct , you must forgive me for using the incorrect terminology.

Within the WSUS console you can check where your synch status is. Under the synchronization status and the download status.

Status - all my clients have updated.  Installing the Windows Update Client on the workstations and just giving them some time was the trick. Thank you both for your help, you guys are awesome!

Great , it's a good feeling when you see they finally are getting their updates..lol

Installing the Windows Client Update on the workstations that were not checking in was the trick.  The next morning after installing it, all of my workstation were updated.