Windows Server Update Services (WSUS), previously known as Software Update Services (SUS), is a computer program developed by Microsoft that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers.

Share tech news, updates, or what's on your mind.

Sign up to Post


Whenever I try to download updates from WSUS Server on my PC, It always ends up giving error "We coudn't connect to the update service, We'll try again later, or you can check now. If it still doesn't work, make sure you're connected to internet."

I looked for Windows update error in event log and also checked for possible solutions on internet regarding the details from event log. But getting no success on how to solve this error.

Can someone please help me as soon as possible.

Thank You
Become a Certified Penetration Testing Engineer
LVL 12
Become a Certified Penetration Testing Engineer

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

In order to capture all computers in the domain on the new WSUS server, should I place a WSUS GPO just under the domain (like with the default domain policy)? Would that be a bad idea?

To note, I found 145 servers in AD using powershell with only 8 of them being disabled. Since yesterday, 45 have shown up on WSUS but they are in specific OUs where I linked the WSUS GPO. The other servers are in the Computers container and Domain Controllers OU (12 DCs). So, I am about 90 off between AD and WSUS (after I link the WSUS GPO to the Domain Controllers OU).

Hello Support,

We have a server that has Windows Server 2012 and it has WSUS 3.0 SP2 on it. We are having an issue with the server's storage getting full so fast. Is there a way for us to move JUST the WSUS content that contains all of the updates to a different server and keep the WSUS 3.0 SP2 database on the original server so that we will have enough space for all of the updates. Does the WSUScontent folder have to stay on the local server with the database on it?
We have a 1000 windows 7 SP1 clients, some of them X86 and some of them X64. IE9 is currently installed on the clients. We want to update the IE to IE11 because of incompatibility with a new application.
It’s a secure environment with no internet and WSUS is not allowed.  We do not have SCCM also in the environment. Now I need to update IE9 to IE7 on all computers using AD GPO.
I realize that IE for X64 has prerequisites that need ot be installed before IE11. On X86 it can be installed directly.
What could be the most efficient way of installing IE11 in my situation.
Hi Guys,

I have around 100 servers in a test environment which i need to update on specific days. An GPO is not an option. Is there any script which i can use? What i would like to have are the following:

1. Search for windows updates on WSUS
2. Install all available updates
3. Restart
4. Detect again

Something like "wuauclt /detectnow /reportnow" with an restart option would be perfect -shutdown /r does not work.

It would be even better if i can enter computernames.

Thanks in adcance.
WE have moved WSUS from 2008 to 2012 R2 server, I gave same name and IP address to new server, have installed the roles of WSUS and IIS, migrated the DB, for which it keeps showing its restoring (Screenshot attached) because DB size is 15 GB and free version of WSUS is 10 GB.
On the console of WSUS it doesn't show any updates (Screenshot attached).
So moving forward, should I install a full version of SQL Standard?
anything else I have to do to start see computers under WSUS Console?

How to use WSUS for Win10 computers using reg. file instead GPO  for update rings.

Any idea?

SBS 2011 standard, tried to reinstall WSUS 3.0 sp2 as it wasn't working.
Had to remove .NET 4.1 as WSUS wouldn't install with it.
WSUS still won't complete, but want to just leave it off, but remote web not working now.
Tried to reinstall .NET 4.0 but no dice.
I believe .NET 4.1 was installed but can't find the installer for Windows Server 2008 R2.
Can anyone point to it?
Receiving an error trying to install the WSUS role on Server 2008.  I am trying to install it using the add roles and get an error.  I have also tried downloading WSUS 3.0 SP1  and installing that but also get an error.
I have attached the WSUS setup logs.  I can't make sense of them.
Any help or suggestions would be greatly appreciated.
I just downloaded PSwindowsupdate and WUInstall modules.  I want to be able to install windowsupdates on remote machines without rebooting them.  The updates are already on the machine from WSUS or they can be downloaded from there.  I'm looking for commands to accomplish this so I can install updates on machines that have failed updates.

I've started with this but I don't think it's doing anything: Invoke-WUInstall -ComputerName xxx -Script {ipmo PSWindowsUpdate; Get-WUInstall -AcceptAll but the Invoke command is failing?
Rowby Goren Makes an Impact on Screen and Online
LVL 12
Rowby Goren Makes an Impact on Screen and Online

Learn about longtime user Rowby Goren and his great contributions to the site. We explore his method for posing questions that are likely to yield a solution, and take a look at how his career transformed from a Hollywood writer to a website entrepreneur.

I am running wsus in 2012 r2 server. My wsus server is in 10.1.1.x subnet. I have 3 subnet running on client machines . While PC group in 101.1.x reporting successfully in wsus other two sinners 10.2.1.x and 10.3.1.x not reporting in wsus. Wsus picking up this machine how ever last report dates showing as “not yet reported”. I have tried the troubleshooting like restarting windows update service , stopping firewall, windows updates readiness tool, reset windows update component, Sfax scan.

What could be the reason ?
I installed WSUS service on my server and it was working completely fine. But today, when I opened to check of all the users are getting update from WSUS or not it gave me an "Error: Connection Error".

I've checked various comments on internet, they say that remove the role and re-install it again.

Can someone please suggest me some better way to tackle this issue rather then just uninstall and reinstall it again.

Thank You.

WSUS - Connection Error
I have 600 machines where windows 7 standard is installed. All machines are getting updates from wsus. All of sudden 30 machines are skipping to detect monthly roll up, security only update and IE11 updates. But these machines successfully updates and installing it successfully.

I am not sure if this strange behaviour. How comes these machines not willing to take the monthly roll up and ie patches. Wsus report says not applicable. Mabel install days not applicable as well. Preview patch is not installed

I just start using WSUS 2016. What happen if on a server I update from online and after use WSUS... Is WSUS will be able to see the new updates installed and just push what is missing?


My Windows 2008 r2 can't detect new update from WSUS. It gives me this error:

Windows Update Client failed to detect with error 0x80244010

I delete the folder C:\Windows\SoftwareDistribution
  • wuauclt /resetauthorization
  • wuauclt /detectnow
  • wuauclt /reportnow

Same error.

What can I do?

In WSUS except going to each computer groups, is there a way to search a computer and see in which computer group it's part of?

I have a few Win 2016 server vms that are having issues connecting to WSUS 6.3 which runs on Win 2012R2
The errors I get are

Logs show this

2018/06/05 07:45:14.5767492 680   4164  WebServices     WS error: There was an error communicating with the endpoint at ''.
2018/06/05 07:45:14.5767518 680   4164  WebServices     WS error: The server returned HTTP status code '500 (0x1F4)' with text 'System.ServiceModel.ServiceActivationException'.
2018/06/05 07:45:14.5767533 680   4164  WebServices     WS error: The server was unable to process the request.
2018/06/05 07:45:14.5767656 680   4164  WebServices     Web service call failed with hr = 8024401f.

Open in new window

I am able to load this page
with this result.

Client Service

You have created a service.

To test this service, you will need to create a client and use it to call the service. You can do this using the svcutil.exe tool from the command line with the following syntax:


You can also access the service description as a single file:

Open in new window

Ive read so many articles about fixes in IIS< but none have worked, nor have there been and changes on WSUS server.
I have another WSUS on another domain and I'm having the same issue there.

On client side ive done the usual but no luck.

net stop wuauserv 
net stop cryptSvc 
net stop bits 
net stop msiserver 
Ren C:\Windows\SoftwareDistribution SoftwareDistribution.old 
Ren C:\Windows\System32\catroot2 Catroot2.old 

Open in new window

The client gets added to WSUS but shows not yet reported.

Ive deployed the new 2016 VM from few different templates with same result.

I have some other 2016 vms, from same templates from a while ago, and those are not showing this error. So I'm not sure why these new ones are.
Hello all,

I have multiple computers in a workgroup environment (50 PCs) all not connected to the internet. I have downloaded the updates and I have the execution files, the question is can I use WSUS to push the updates to all PCs? How do I add the downloaded updates to WSUS.
I am currently with Ivanti formally known as Shavlik patch management.  My 3 year is about to expire, what I was paying for 3 years is now what I will have to pay for 1 year so we can not continue with Ivanti.   Does anyone have any recommendations on a patch management system that has a reasonably  price structure?

CompTIA Network+
LVL 12
CompTIA Network+

Prepare for the CompTIA Network+ exam by learning how to troubleshoot, configure, and manage both wired and wireless networks.

Hello ,

I am looking help on WSUS issue ,Where my WSUS client (windows server 2016 ) not able to report on my WSUS server running Windows 2012 R2  (WSUS 6.3.9600.18228).
On WSUS client name showing windows 10 and status showing NOT reported.

I have performed some basic troubleshooting as mentioned below but it didn't help me.

1. Stop the Automatic Updates service and BITS service.                        
net stop wuauserv                        
net stop bits                        
2. Delete “%windir%\softwaredistribution” directory.                        
3. Start the Automatic Updates service and BITS service. When these two services                         
have been started, they will auto-create “softwaredistribution” and its subfolder                         
at system directory.                        
net start wuauserv                        
net start bits                        
4. Stop the Cryptographic Services                        
5. Rename the C:\windows\System32\catroot2 folder                        
6. After the “%windir%\softwaredistribution” directory has been generated, please                         
let the client contact the WSUS server immediately.                        
wuauclt.exe /resetauthorization /detectnow       


I assigned domain computer to group for update packages from WSUS server by GPO, and they are running well.
For the other computer dis-join domain, How to apply them ? I type “wuauclt /resetauthorization /detectnow” on each one, but they have still not connected to WSUS yet.
Anyone can guide me how to solve the issue ?
Environment: WSUS Server 2012 R2; Clients: Windows 7,10, 2012 R2.

Windows update not working on server 2012 r2 standard.

Tried the general Microsoft Site for the Update Readiness Tool 

Tried the following Microsoft Site for general update failure. 

Finally looked through the Windows Update Troubleshooting site. The manual approach requires registry settings so take great care. 

2018-11-27      11:15:01:377      1976      224      AU      #########
2018-11-27      11:15:01:377      1976      224      IdleTmr      WU operation (CSearchCall::Init ID 6) started; operation # 4478; does not use network; is at background priority
2018-11-27      11:15:01:377      1976      224      Agent      *** START ***  Queueing Finding updates [CallerId = AutomaticUpdates  Id = 6]
2018-11-27      11:15:01:377      1976      224      AU      <<## SUBMITTED ## AU: Search for updates  [CallId = {BC718562-0D95-4F90-91B2-D3BD75D2FEE2} ServiceId = {3DA21691-E39D-4DA6-8A4B-B43877BCB1B7}]
2018-11-27      11:15:01:377      1976      224      Agent      SkipSelfUpdateCheck search flag set for serverId: 117CAB2D-82B1-4B5A-A08C-4D62DBEE7782
2018-11-27      11:15:01:377      1976      224      IdleTmr      WU operation (CSearchCall::Init ID 7) started; operation # 4480; does not use network; is at background priority
2018-11-27      11:15:01:377      1976      224      Agent      *** START ***  Queueing Finding updates [CallerId = AutomaticUpdates  Id = 7]
2018-11-27      11:15:01:377      1976      224      AU      <<## SUBMITTED ## AU: Search for updates  [CallId = …
I have a fresh install of WSUS on a fresh install of Windows Server 2012R2.  I have edited group policy to have our desktops use our internal WSUS server for updates.  The only client showing in the WSUS console is the WSUS server itself.  I tried reinstalling WSUS on Windows Server 2016 and I get identical behavior.  I ran the Solarwinds Diagnostic Tool for the WSUS and the first two sections are fine. The last section, WSUS Server Connectivity, fails with "Cannot Connect - caused by a network infrastructure fault making the Windows Update unavailable ..."

Any assistance would be appreciated.
Working on a SBS2011 experiencing the usual SBS WSUS errors that create disk space issues. I decided to clean up the WSUS database by following two articles.

Reinstall WSUS on SBS tried removing from add and remove programs and it errors out. As mentioned in this article I proceeded to the document below to remove the role but have a database question prior to deleting.  

WSUS uninstall is failing I made the changes to the registry mentioned in this article and removed the role which completed successfully. Step 10 states, once WSUS is uninstalled, manually remove the WSUS content and/or database files from the hard drive. This is where I would like to clarify before deleting data. For obvious reasons I want to make sure what I’m deleting will not cause an instability.

My understanding of SQL is it’s installed on the C: partition below where the system databases are displayed. Rather than tamper with the SQL installation the only data I removed here was the log files which grew over 12G. FYI I copied them for further review.

SQL system files located C:\Windows\SYSMSI\SSEE\MSSQL.2005\MSSQL\ with the following folders:
LOG (12.8G) cleaned up the log files

On the D: partition there is D:\WSUS with the following folders:
SUSDB.mdb (26.5G)
SUSDB_log.ldf (2.6G)

I opened SQL Studio and see the following SUSDB database
Hi I have a test rig. The wsus server is online and we export the files and database to three separate. But identical rigs
Two work.
The other one remains at downloading updates for many days.

The permissions are the same. It’s the same database etc

Also if I rebuild the box it works fine with that export just won’t update next time

Any ideas ?

Windows 2012 r2


Windows Server Update Services (WSUS), previously known as Software Update Services (SUS), is a computer program developed by Microsoft that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers.