In order to capture all computers in the domain on the new WSUS server, should I place a WSUS GPO just under the domain (like with the default domain policy)? Would that be a bad idea?

To note, I found 145 servers in AD using powershell with only 8 of them being disabled. Since yesterday, 45 have shown up on WSUS but they are in specific OUs where I linked the WSUS GPO. The other servers are in the Computers container and Domain Controllers OU (12 DCs). So, I am about 90 off between AD and WSUS (after I link the WSUS GPO to the Domain Controllers OU).

Thanks.

We have a 1000 windows 7 SP1 clients, some of them X86 and some of them X64. IE9 is currently installed on the clients. We want to update the IE to IE11 because of incompatibility with a new application.
It’s a secure environment with no internet and WSUS is not allowed.  We do not have SCCM also in the environment. Now I need to update IE9 to IE7 on all computers using AD GPO.
I realize that IE for X64 has prerequisites that need ot be installed before IE11. On X86 it can be installed directly.
What could be the most efficient way of installing IE11 in my situation.
Thanks

WE have moved WSUS from 2008 to 2012 R2 server, I gave same name and IP address to new server, have installed the roles of WSUS and IIS, migrated the DB, for which it keeps showing its restoring (Screenshot attached) because DB size is 15 GB and free version of WSUS is 10 GB.
On the console of WSUS it doesn't show any updates (Screenshot attached).
So moving forward, should I install a full version of SQL Standard?
anything else I have to do to start see computers under WSUS Console?
thanks.
WSUS.JPG
DB.JPG

SBS 2011 standard, tried to reinstall WSUS 3.0 sp2 as it wasn't working.
Had to remove .NET 4.1 as WSUS wouldn't install with it.
WSUS still won't complete, but want to just leave it off, but remote web not working now.
Tried to reinstall .NET 4.0 but no dice.
I believe .NET 4.1 was installed but can't find the installer for Windows Server 2008 R2.
Can anyone point to it?

I just downloaded PSwindowsupdate and WUInstall modules.  I want to be able to install windowsupdates on remote machines without rebooting them.  The updates are already on the machine from WSUS or they can be downloaded from there.  I'm looking for commands to accomplish this so I can install updates on machines that have failed updates.

I've started with this but I don't think it's doing anything: Invoke-WUInstall -ComputerName xxx -Script {ipmo PSWindowsUpdate; Get-WUInstall -AcceptAll but the Invoke command is failing?

I am running wsus in 2012 r2 server. My wsus server is in 10.1.1.x subnet. I have 3 subnet running on client machines . While PC group in 101.1.x reporting successfully in wsus other two sinners 10.2.1.x and 10.3.1.x not reporting in wsus. Wsus picking up this machine how ever last report dates showing as “not yet reported”. I have tried the troubleshooting like restarting windows update service , stopping firewall, windows updates readiness tool, reset windows update component, Sfax scan.

What could be the reason ?

I have 600 machines where windows 7 standard is installed. All machines are getting updates from wsus. All of sudden 30 machines are skipping to detect monthly roll up, security only update and IE11 updates. But these machines successfully detected.net updates and installing it successfully.

I am not sure if this strange behaviour. How comes these machines not willing to take the monthly roll up and ie patches. Wsus report says not applicable. Mabel install days not applicable as well. Preview patch is not installed

Hi,

My Windows 2008 r2 can't detect new update from WSUS. It gives me this error:

Windows Update Client failed to detect with error 0x80244010

I delete the folder C:\Windows\SoftwareDistribution
Run:

• wuauclt /resetauthorization
• wuauclt /detectnow
• wuauclt /reportnow

Same error.

What can I do?

I have a few Win 2016 server vms that are having issues connecting to WSUS 6.3 which runs on Win 2012R2
The errors I get are
8024401f
8024401c

Logs show this

2018/06/05 07:45:14.5767492 680   4164  WebServices     WS error: There was an error communicating with the endpoint at 'http://WSUS.domain.com:8530/ClientWebService/client.asmx'.
2018/06/05 07:45:14.5767518 680   4164  WebServices     WS error: The server returned HTTP status code '500 (0x1F4)' with text 'System.ServiceModel.ServiceActivationException'.
2018/06/05 07:45:14.5767533 680   4164  WebServices     WS error: The server was unable to process the request.
2018/06/05 07:45:14.5767656 680   4164  WebServices     Web service call failed with hr = 8024401f.

Select all Open in new window

I am able to load this page http://WSUS.domain.com:8530/ClientWebService/client.asmx
with this result.

Client Service


You have created a service.

To test this service, you will need to create a client and use it to call the service. You can do this using the svcutil.exe tool from the command line with the following syntax:

svcutil.exe http://wsus.domain.com:8530/ClientWebService/Client.asmx?wsdl

You can also access the service description as a single file:

http://wsus.domain.com:8530/ClientWebService/Client.asmx?singleWsdl

Select all Open in new window

Ive read so many articles about fixes in IIS< but none have worked, nor have there been and changes on WSUS server.
I have another WSUS on another domain and I'm having the same issue there.

On client side ive done the usual but no luck.

net stop wuauserv 
net stop cryptSvc 
net stop bits 
net stop msiserver 
Ren C:\Windows\SoftwareDistribution SoftwareDistribution.old 
Ren C:\Windows\System32\catroot2 Catroot2.old 

Select all Open in new window

The client gets added to WSUS but shows not yet reported.

Ive deployed the new 2016 VM from few different templates with same result.

I have some other 2016 vms, from same templates from a while ago, and those are not showing this error. So I'm not sure why these new ones are.

I am currently with Ivanti formally known as Shavlik patch management.  My 3 year is about to expire, what I was paying for 3 years is now what I will have to pay for 1 year so we can not continue with Ivanti.   Does anyone have any recommendations on a patch management system that has a reasonably  price structure?

Thanks.

Hello ,

I am looking help on WSUS issue ,Where my WSUS client (windows server 2016 ) not able to report on my WSUS server running Windows 2012 R2  (WSUS 6.3.9600.18228).
On WSUS client name showing windows 10 and status showing NOT reported.

I have performed some basic troubleshooting as mentioned below but it didn't help me.

1. Stop the Automatic Updates service and BITS service.                        
net stop wuauserv                        
net stop bits                        
2. Delete “%windir%\softwaredistribution” directory.                        
3. Start the Automatic Updates service and BITS service. When these two services                         
have been started, they will auto-create “softwaredistribution” and its subfolder                         
at system directory.                        
net start wuauserv                        
net start bits                        
4. Stop the Cryptographic Services                        
5. Rename the C:\windows\System32\catroot2 folder                        
6. After the “%windir%\softwaredistribution” directory has been generated, please                         
let the client contact the WSUS server immediately.                        
wuauclt.exe /resetauthorization /detectnow       

Thanks

Windows update not working on server 2012 r2 standard.

Tried the general Microsoft Site for the Update Readiness Tool

http://support.microsoft.com/kb/947821 

Tried the following Microsoft Site for general update failure.

http://support.microsoft.com/kb/2509997 

Finally looked through the Windows Update Troubleshooting site. The manual approach requires registry settings so take great care.

http://support.microsoft.com/kb/971058 


windwsupdate.log
2018-11-27      11:15:01:377      1976      224      AU      #########
2018-11-27      11:15:01:377      1976      224      IdleTmr      WU operation (CSearchCall::Init ID 6) started; operation # 4478; does not use network; is at background priority
2018-11-27      11:15:01:377      1976      224      Agent      *** START ***  Queueing Finding updates [CallerId = AutomaticUpdates  Id = 6]
2018-11-27      11:15:01:377      1976      224      AU      <<## SUBMITTED ## AU: Search for updates  [CallId = {BC718562-0D95-4F90-91B2-D3BD75D2FEE2} ServiceId = {3DA21691-E39D-4DA6-8A4B-B43877BCB1B7}]
2018-11-27      11:15:01:377      1976      224      Agent      SkipSelfUpdateCheck search flag set for serverId: 117CAB2D-82B1-4B5A-A08C-4D62DBEE7782
2018-11-27      11:15:01:377      1976      224      IdleTmr      WU operation (CSearchCall::Init ID 7) started; operation # 4480; does not use network; is at background priority
2018-11-27      11:15:01:377      1976      224      Agent      *** START ***  Queueing Finding updates [CallerId = AutomaticUpdates  Id = 7]
2018-11-27      11:15:01:377      1976      224      AU      <<## SUBMITTED ## AU: Search for updates  [CallId = …

Working on a SBS2011 experiencing the usual SBS WSUS errors that create disk space issues. I decided to clean up the WSUS database by following two articles.

Reinstall WSUS on SBS tried removing from add and remove programs and it errors out. As mentioned in this article I proceeded to the document below to remove the role but have a database question prior to deleting.  

WSUS uninstall is failing I made the changes to the registry mentioned in this article and removed the role which completed successfully. Step 10 states, once WSUS is uninstalled, manually remove the WSUS content and/or database files from the hard drive. This is where I would like to clarify before deleting data. For obvious reasons I want to make sure what I’m deleting will not cause an instability.

My understanding of SQL is it’s installed on the C: partition below where the system databases are displayed. Rather than tamper with the SQL installation the only data I removed here was the log files which grew over 12G. FYI I copied them for further review.

SQL system files located C:\Windows\SYSMSI\SSEE\MSSQL.2005\MSSQL\ with the following folders:
Backup
Binn
Data
Install
LOG (12.8G) cleaned up the log files
SchemaSig

On the D: partition there is D:\WSUS with the following folders:
UpdateServicesPackages
WsusConent
SUSDB.mdb (26.5G)
SUSDB_log.ldf (2.6G)

I opened SQL Studio and see the following SUSDB database
…