Windows Update Repository

So i have a powershell script that currently runs as a task on servers and it uses WUinstall to get updates from microsoft. However, we have a PCI zone that has servers with no internet access, Is there a way to download updates manually to create a repository i can store on the network somewhere?
LVL 1
leadthewayAsked:
Who is Participating?
 
Scott SilvaConnect With a Mentor Network AdministratorCommented:
I have used a free product called WSUS offline update for equipment in locked zones, but not sure if using it will violate your PCI compliance....  
http://www.wsusoffline.net/

You will have to research if it is OK to use.
0
 
leadthewayAuthor Commented:
looks interesting, does it basically download to itself then manually push the updates out the specific servers?
0
 
Scott SilvaNetwork AdministratorCommented:
You can make it pull updates for various current versions, and it can make a USB drive or dvd image you can then get into the PCi compliant subnet and run the updater... It is a manual process on the install side, but I have used it in our SCADA network for updates.
0
 
leadthewayAuthor Commented:
perfect. that might just do the trick
0
 
Scott SilvaNetwork AdministratorCommented:
The other option would be to have a wsus slave server that was CAREFULLY firewalled off so it can ONLY talk to main WSUS server.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.