WSUS - on DC?
I could be wrong because I have had a bit of experience with thirdparty enterprise level patch remediation solutions, but I originally thought it was recommended to install WSUS on a DC. I was just about to do it, and now everything I read suggests strongly against it. It is a secondary DC, and really was the only available VM with the lowest utilization so thought it would be a safe bet, otherwise would have to purchase an additional Server license. What do you guys think regarding WSUS with 2012/16. Keep it off the DC? It is a small environment about 25 nodes, just wanted to gain more control with the mess Microsoft consistently bestows on everyone with their under-tested Win10 updates and also regain the control as to when computers can be rebooted! No software company should decide when computers get rebooted! Monst businesses are 24x7 (Sorry venting ;-))