I had asked a previous question about patch management and the solution seemed to be to implement WSUS.  However, there are other products such as Adobe that also need to be updated regularly.  Does WSUS assist with updating Adobe also somehow?  

Additionally, when there is about 25 computers on the network, is it better to somehow just enable the products like Adobe to automatically update themselves if possible?  Or is there another software that incorporates Microsoft and other products?

My WSUS 2016 server is full with WSUS content using around 900GB of space. I am surprised it needs to much. I have run the server cleanup and it only cleared around 10GB

I am downloading:
Language - English
Products - Windows 10, Server 2012, Server 2016, Office 2016
Classifications - Critical, Definition, Security, Feature Packs, Updates, Service Packs and Upgrades

When I look at 'All updates' there are 1000's classed as Windows XP, Server 2003 etc that surely should go with the cleanup?

Hello All - I have a new 2016 Server that was a migration from an old SBS 2011 server.  All the roles have been moved and the old server is turned off.  I want to get rid of the WSUS roles since I am not installing it on the new server.  In GP I see the Update Services Common Settings and Client Computer Settings is still there from the migration.  I would like this all turned off so I modified the common settings gp and disabled the intranet option in Windows Updates so that the systems would go directly to the MS site for updates.  But the server will not download updates.  It starts and gets to about 9% and then stops with the error that I have attached.  Any thoughts as to why this might be happening?

Regards,

Rob

DB2 10.5 on Windows Server 2019 Standard

I am trying to set up a DB2 cluster using Windows Clustering.  I have been using a few different resources from the web to set this up.  One is ..
https://www.ibm.com/developerworks/data/library/techarticle/dm-1212mscs/index.html
and another is ...
https://docs.starquest.com/Supportdocs/techSQDRPlus/PDF/IBM_DB2_Cluster_0301nomani.pdf

Both are excellent resources but I am be missing something.

Here is an overview of what I have.

Windows Cluster with 3 drives (data, log, and Quorum) named KGSLTWICDB01 with IP address by running the db2mscs -f c:\download\db2mscs.cfg. I have tested the failover and it seems to work fine.
2 DB2 Nodes (KGSLTWICDBN01 and KGSLTWICDBN02)
Under the cluster manager I see a db2Group role and both nodes show in the Nodes section.

My main question is how the heck do I set up the second node?  The documents seem to assume I know how to do that or that setting up node1 takes care of node2, but I don't see that.

When I run DB2iList on node1 I get
DB3          c : KGSLTWICDB01

When 1 run same on node2 I get
DB2

So what am I missing?  What do I need to do to get node2 set up the way it needs to be?

Thank you!

Jim

Hi,

I am having trouble to install .net framework 3.5 or 4.o  in Window 10 enterprise due to WSUS server we have.

Any suggestions are appreciated!

Thank you very much in advance!

Experts - an SQL devotee I'm not, but need assistance with a WSUS SUSDB file that is in a "Recovery Pending" status.

I was attempting to do a full uninstall of WSUS and the associated database files off a Server 2012R2 system. The WSUS database was using the WID repository.

Steps taken:

1- Uninstalled the WSUS role

2 - As I was getting ready to post this step taken, I just noticed in my infinite wisdom - I failed to do step #2 of this following article link, but did the remaining steps which did not give the expected results noted in Step #5 ( article link is safe)

                    https://slice2.com/2016/11/11/howto-delete-the-wsus-wid-on-windows-2012r2/

3 - Installed the SQL Management Studio after the above step - and see "SUSDB (Recovery Pending)" -


4 - Attempting to expand the SUSDB gives this error:


At this point I'm not interested in attempting to fix this error - but rather get this WSUS fully removed off the server.  Can I detach and drop and then delete the WID\Data\SUSDB.mdf and SUSDB_log.ldf files - and then delete the WSUS contents as suggest in step 2 of the above article link?

If not recommended, what do I need to do to get this removed off the server. The mdf/ldf files are on the root drive and getting rather large in size (40GB+) - thanks much -

After upgrading Windows 10 to 1809 we can no longer obtain updates from our WSUS server.  We operate in a closed loop environment, the error is attached.  I've ran the Windows update troubleshooter no joy.
Win-10-1809-Windows-Update-Encounter.PNG

We operate a remote installation on a satellite link. Our WSUS downloads can take from 4 days  to up to 30 days! While the download is in progress, this information is displayed on the WSUS snap-in summary screen, but disappears when the download completes.

I'm trying to get specific information out of the Windows Update log (C:\Windows\Windows Update.log) running on my WS2012 R2 VM.
Specifically, I need to know:

• When download from Microsoft started
• When it completed
• The size of the download

Attached is the log from our "Update Tuesday through the date that the WSUS server began pushing out updates to workstations. I'm sure what I'm looking for is in there, I'm just not recognizing it due to the density of information.

Also attached are images of the WSUS summary screen, befoer and after completion. During downloads, the circled area contains start date, size of download, and amount currently downloaded. After completion, all that info is gone.

Thank you.
WindowsUpdate.log
WSUS-in-progress.jpg
WSUS-done.jpg

After a nasty Trojan virus, we have implemented windows firewall SMB block rules on our client computers to block incoming SMB.   This allows us to protect computers on the same network from a lot of malware file dropping.

We are also implementing a new Patch Manager that uses WSUS as an intermediary.   This mechanism requires SMB and WMI.   So, with Group Policy I tried to put in an exception in the rules using an allow if secure, then putting in the computers that need access.  I found out that if there are local rules that allow SMB and they are merged, it will allow anything through.   I also went the route of setting up a machine (windows 10) firewall manually, then exporting all the firewall rules with an exception (defined in remote computer scope), then denying local firewall rules and local security connections through the GPO.   This, initially, I thought worked.   However, when testing the same GPO on a windows 7 machine, it did not clear out the local firewall rules.

Is there something different I need to do for windows 7 firewall, or is there another route we should take?   Right now our LAN to LAN segments are protected with firewall, but clients on the same segment are vulnerable to each other unless I do a block rule (which takes precedent over any allow rule).

Hello all,

Wondering if I can get some thoughts on a WSUS scenario I'm working through.

The scenario:

Non-Internet connected network is going to have a WSUS server to manage updates for a small network of computers. I do not have access to an internet connected WSUS to export updates/update data from in order to import into the air gapped network.

The only way I'm aware of to do this (as I've done it in the past) and the only way I've been able to find online so far is to have an internet connected WSUS server to export the information from and import it to the air gapped WSUS server.

So my question is: Does anyone here have any other ideas how this can be accomplished? Or am I stuck with having to come up with another WSUS server to export from.

Thanks for sharing your thoughts!