Windows 10 & WSUS
Am i right in saying that Win10 doesn't install updates automatically via WSUS like Win7 does currently?
As per: https://social.technet.microsoft.com/Forums/en-US/8a416aa0-4ea6-49d1-bc02-9fee7736c2c7/wsus-and-windows-10-apply-updates-automtically?forum=winserverwsus
As per: https://social.technet.microsoft.com/Forums/en-US/8a416aa0-4ea6-49d1-bc02-9fee7736c2c7/wsus-and-windows-10-apply-updates-automtically?forum=winserverwsus
Hi
May be below links will help you to understand your requirements.
https://technet.microsoft.com/en-us/itpro/windows/manage/waas-manage-updates-wsus
https://support.microsoft.com/en-us/kb/3095113
May be below links will help you to understand your requirements.
https://technet.microsoft.com/en-us/itpro/windows/manage/waas-manage-updates-wsus
https://support.microsoft.com/en-us/kb/3095113
ASKER
So we still have to manually install via Windows Update settings?
ASKER
and need 2012 r2 WSUS for WIN10?
ASKER
and we already have WSUS setup as per https://technet.microsoft.com/en-us/itpro/windows/manage/waas-manage-updates-wsus?f=255&MSPPError=-2147217396
Starting with windows 8, MS makes it harder for admins to control when their workstations install and restart. MS introduced a so-called "maintenance window" and that together with the option to do fast booting (shutdown=kernel hibernation), had this effect that you see.
Anyway, there still is a way to make it feel like you are on 7: do use deadlines. Update deadlines are configurable right at the WSUS, per update or even globally (as an auto-approve-option). Deadline september 25th would mean, If I start my computer on the 26th, the update will be installed right away and a restart will be enforced. Before the 25th however, the behavior is not changed.
So if you wanted newly approved updates to install as soon as possible, set the deadline to the same day.
Anyway, there still is a way to make it feel like you are on 7: do use deadlines. Update deadlines are configurable right at the WSUS, per update or even globally (as an auto-approve-option). Deadline september 25th would mean, If I start my computer on the 26th, the update will be installed right away and a restart will be enforced. Before the 25th however, the behavior is not changed.
So if you wanted newly approved updates to install as soon as possible, set the deadline to the same day.
You won't necessarily have to manually update using windows update, as it should still change the power options to 'Update and Restart' and 'Update and Shutdown'.
As above, you can also set the updates to have a deadline. It's probably easiest to create a new update view and then multiple select > right-click and Approve... > on the drop down for the computer group that you want, you should be able to set a deadline.
As above, you can also set the updates to have a deadline. It's probably easiest to create a new update view and then multiple select > right-click and Approve... > on the drop down for the computer group that you want, you should be able to set a deadline.
"as it should still change the power options to 'Update and Restart' and 'Update and Shutdown'." - No, not quite. Unfortunately, it only changes to "update and restart", which is not what users will like to choose. "Update and shutdown" is seen ONLY after the updates have been already installed in the background. This behavior has also changed with win8 already.
My mistake. I also noticed that setting a deadline for multiple updates doesn't seem to be possible on updates that are already approved.
You will need to reapprove updates, and then, without clicking ok on the approval window set a deadline.
You will need to reapprove updates, and then, without clicking ok on the approval window set a deadline.
"setting a deadline for multiple updates doesn't seem to be possible either" - it is possible, using the option I described: auto-approvals.
ASKER
Is it worth waiting for next version of windows pro?
ASKER
Why do you link this thread? The reason for the behavior has been mentioned, also the solution: deadlines. "The next version of windows pro" - now what should that mean? Windows 10 does not seem to be getting a successor in the near future. instead, MS will try and improve it about twice a year with feature updates. If they will address windows update? Who knows. Best would be to use the feedback app and tell them.
You can use task scheduler to run a VBS script that forces the pending updates installation at a specific time of each day or selected week days, or use the same script as startup script on the domain, thus you will get all your LAN computers updated.
ASKER
Can you share the script?
We can use scripts, anytime, but how do we handle restarts? That is the problem.
ASKER
ah yes, i dont want that.
If we use a script, please test: will the user have the option to shutdown, or only to "update and shutdown"? I am not sure at the moment.
With the script you can Reboot inmediately, or no reboot at all. Tomorrow will publish an Article about that Script.
If the user chooses not to reboot, windows will enforce a reboot after three days - back to square one.
In that case, you must communicate to the users the approved policy for reboots, it could be at midnight every day, or a day in the week. To reboot the computer is an unavoidable step in the windows update process.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
my testing so far has shown that clients are getting a prompt asking them to update windows!
No more arguments.
With our settings, we have it auto download and schedule install, but it does not install. So yes, you are right, unless there are other settings that will make it auto install.