DK Bridges
asked on
Scheduling WSUS patch on a monthly schedule by container
I need to find a way to patch my servers by function. I want to patch the dev/test server, wait a week, patch the QA /staging servers, wait a week then patch the production servers. This will allow the application support teams to verify the patching didnt break their applications before being rolled out to the next level. Same for the workstations. Patch the Beta group of users, wait a week and then patch the rest.
Waiting to approve the patches doesnt fix my issue and the GPO only allows for a specific date. Any ideas? Btw: Servers are 2012 R2 and desktops are Windows 10 pro.
Thanks,
Donna
Waiting to approve the patches doesnt fix my issue and the GPO only allows for a specific date. Any ideas? Btw: Servers are 2012 R2 and desktops are Windows 10 pro.
Thanks,
Donna
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
" ...you could using time limit force the client to install the update by that date,"
This involves manually going to each group of updates and setting deadlines, way too much unnecessary work IMO. Also....testing updates....complete waste of time. I'd rather deal with the rare bad updates and have a lot more time to do more important things. Just my 2 cents/rant.
This involves manually going to each group of updates and setting deadlines, way too much unnecessary work IMO. Also....testing updates....complete waste of time. I'd rather deal with the rare bad updates and have a lot more time to do more important things. Just my 2 cents/rant.
Donald, agree on the deadline part, disagree on the rest. Certain firms/custom apps can not afford event the installation of an update that is not "faulty" but the impact because of the ..... update can have on a custom app. i.e. .net framework where an update adds an MS feature the breaks the custom app.
many firms with a setup as the askers have a test environment that is a mirror image of the production. this is where they test update/changes ...
having a test OU and everyone else in the environment where the test OU has one of each type of workstation that is in the environment. approve the install in the test OU first.
Make sure to get notifications when WSUS gets new updates..... (so you know updates are being made available to the test oU).....
many firms with a setup as the askers have a test environment that is a mirror image of the production. this is where they test update/changes ...
having a test OU and everyone else in the environment where the test OU has one of each type of workstation that is in the environment. approve the install in the test OU first.
Make sure to get notifications when WSUS gets new updates..... (so you know updates are being made available to the test oU).....
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I have recommended this question be closed as follows:
Split:
-- Donald Stewart (https:#a42107832)
-- arnold (https:#a42108293)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
Pber
Experts-Exchange Cleanup Volunteer
I have recommended this question be closed as follows:
Split:
-- Donald Stewart (https:#a42107832)
-- arnold (https:#a42108293)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
Pber
Experts-Exchange Cleanup Volunteer
https://technet.microsoft.com/en-us/library/cc708536(v=ws.10).aspx