patron
asked on
Servers not able to communicate with WSUS
We are using WSUS configured on Windows 2012 R2 to patch our Server in domain
It has been observed most of the times 60 % Boxes are not reporting /communicating with WSUS
Need to diagnose if that is because if Group Policy or something else ?
How can we diagnose /validate the same if policy is applied in right wy to get server communication with WSUS?
Please help with your best practice if any tool /steps /diagnostic utility we can follow to get this fixed
Thanks
It has been observed most of the times 60 % Boxes are not reporting /communicating with WSUS
Need to diagnose if that is because if Group Policy or something else ?
How can we diagnose /validate the same if policy is applied in right wy to get server communication with WSUS?
Please help with your best practice if any tool /steps /diagnostic utility we can follow to get this fixed
Thanks
ASKER
Thanks Noah,
How to verify if Policy is correctly configured /applied to get WSUS communicated with clients in domain ?
Any command we can push /pull from WSUS Server or Client computers to get it fixed?
Any more utility steps to report computers in wsus console with valid communication
How to verify if Policy is correctly configured /applied to get WSUS communicated with clients in domain ?
Any command we can push /pull from WSUS Server or Client computers to get it fixed?
Any more utility steps to report computers in wsus console with valid communication
Check whether the reg key
HKEY_LOCAL_MACHINE\SOFTWAR E\Policies \Microsoft \Windows\W indowsUpda te
exists and contains the WSUS server name etc. This key needs to be set by the GPO, if everything goes well.
Next, generate a lig file as described in the link above.
HKEY_LOCAL_MACHINE\SOFTWAR
exists and contains the WSUS server name etc. This key needs to be set by the GPO, if everything goes well.
Next, generate a lig file as described in the link above.
ASKER
Thanks Qlmo,
will check this manually can we fetch this manully for mutiple computers?
any way to make this entry automated for mutiple computers if not going through gpo?
will check this manually can we fetch this manully for mutiple computers?
any way to make this entry automated for mutiple computers if not going through gpo?
You can export that reg key from a working machine (as .reg file) and apply (locally) on a non-working machine. I'm doing that for a few (intentionally) non-domain joined PCs.
ASKER
will tray that manually by pushing reg key
can we push it on multiple boxes using script ?
what else we can do before going to DC to have look on group policy ?
can we push it on multiple boxes using script ?
what else we can do before going to DC to have look on group policy ?
ASKER
Please help if there is any tool/utility to make wsus better for above given need
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks
You may refer to the following link for troubleshooting methods and steps. You can infer from the link and I will assist you from there.
Reference: https://blogs.technet.microsoft.com/sus/2008/07/10/troubleshooting-wsus-clients/