Need to have users computers get their windows updates from our SUS server

Check to see if you have Computer Configuration\Administrative Templates\Windows Components\Windows Update..  If not you will need to download the ADM file and add it to your GP.
 
Here is the TechNet that you should follow.
You will need to add WSUS ADM file to your system
https://msdn.microsoft.com/en-us/library/dd939933(v=ws.10).aspx
https://technet.microsoft.com/en-us/library/cc720539(v=ws.10).aspx

Hi,

settings can be found in Computer Configuration --> Policies --> Administrative Templates --> Windows Componenets --> Windows Update
In there, 2 options that you must set are:
1. Configure Automatic Updates
2. Specify intranet Microsoft Update service location --> this is your wsus server

You can off course configure additional options, but those 2 are must.

Regards,
Ivan.

can this be done also just via the SUS server and not via the GP or does it have to be setup in the GP also?

Group Policy  has to be set / aplied to computers to make this work

Ok just so I am 100% sure on this, even though I setup the SUS side and have computers showing up in there, I have to still enable the GP piece also for this to work correct, not just setting up the SUS side correct?

Specify Intranet Microsoft Update Service Location = Is a must
this tuns on "Download Updates From Wsus"

Ok will check it out.
Thanks

Also don't forget It will download only those updates you Aprove

Ok

David,
Just an update..
I have checked a couple computers and they do have the registry entry(WUServer and WUStatusserver) with the name of our SUS server on them but we don't have anything setup via GPO just via the SUS server itself.
Also when I check the computer policy on these same computers, they don't show anything enabled meaning nothing from a GP.
Is there anyway to tell if these workstations are getting their updates via Microsoft web site and not our SUS?

I actually think by default it's that way unless you change settings in WSUS

WSUS : Options - Computer

By default computers will be added to unassigned computer group in WSUS

Wuauclt /registernow /detectnow     to recheck WSUS on Computers

David,
Two things.
First do I run that command (wuauclt)you gave on the pc at the dos prompt because when I run it, it looks like it runs but I never see anything come up or do I run that on the SUS server?

Ok I see on our network appliance that the other day there was about 450 request going out to
au.ds.windowsupdates.com
This should not be since it appears the  pc look as if they are talking with our SUS server.
Any idea what this means?

Wuauclt /registernow /detectnow  this comomand    won't show output, as it's just to make sure, that Computers are using WSUS as a source of updates

You are sorted

But, I would suggest, to set it for GPO options in some stage, in case you need to control / manage specific updates to certain groups / departments

David,
Sorry to bother you again with this but I found in our GPO yesterday that there is two GPOs one for computers and one for servers and they are named SCE Managed Group Policy Computers and
SCE Managed Group Policy Servers. We did not create these so I am wondering if this Is this what is created if you have the selection in computers for use the update service console?
When I check one of the pc's, it does show our SUS server name that it appears to be using.

I would say WSUS created these groups for it self, I actually never ran WSUS in setup what you have, I always had full GPO control.

create groups in wsus and setup in GP