Windows Server Update Services (WSUS), previously known as Software Update Services (SUS), is a computer program developed by Microsoft that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers.

Share tech news, updates, or what's on your mind.

Sign up to Post

We are a large educational institute and since moving to windows 10 I am having nothing but problems with the language support install via WSUS. The naming of the categories in WSUS is confusing enough at the best of times for windows 10 but I have at least got updates flowing ok across the editions we are running but no matter what I do I cant get the language support to work

So we use WSUS to deploy updates and we reimage our fleet of devices regularly. During sysprep we deploy the required languages the same as we used to with windows 7 and they are shown in the language bar when users logon but when the languages try to download on demand they fail via wsus. As a temporary workaround in the local group policy ive had to set the bypass and to download from windows update online directly but this is not feasible for some 300+ devices everytime we reimage or rebuild devices and seemingly for each user who logs on. We have upwards of 800 users who rarely use the same device twice and are always moving

Most notably the Japanese language keyboard support is main issue as the other language to a point work ok. So my question is primarily what categories need to be enabled in WSUS to support the languages effectively and which updates have to be approved ? We cant support downloading every language on the WSUS box due to the amount of space required so im hoping others have been through this and know the minimum that has to be approved (We deploy Arabic, Greek, French, …
PMI ACP® Project Management
LVL 19
PMI ACP® Project Management

Prepare for the PMI Agile Certified Practitioner (PMI-ACP)® exam, which formally recognizes your knowledge of agile principles and your skill with agile techniques.

Feature Update to Windows 10 (consumer editions), version 1903 is showing up in WSUS as non-applicable to have of the workstations in the domain.  All workstations come from the same 1803 image.

Any ideas as to why?
need a date for last time updates we’re imported to an offline wsus  (for use in a report script)
ideally powershell. but can’t find a log either (change.log doesn’t show.   and wsusconfig.lastchangedate isn’t showing the date updates were imported
windows 2012 r2

written a report for the people that care about that sort of thing. but would like it to know that the latest months patches are on.
Hello All,

I am having a problem with some Windows 7 machines and updates.  A few machine have taken as long as 45 minutes to update in the morning even if they were not informed the night before when shutting down that there were updates to run.  One machine seems to be stuck in a loop where it updates every morning for about an hour.  They are all using WSUS to get their updates from a 2019 Server.  When I look at the machine that updates every morning in WSUS it shows on .net update needed but it does not show up on the computer in the update settings.

Any suggestions?


I use this update query daily. However, i need it to function differently.

Currently table QREVALUE is populated with QREVALUETMMKVEH. However, I do NOT need to copy the blank fields also. If QREVALUETMMKVEH is populated with a different laptop then I run the risk of copying some blank fields over top of good populated fields that were updated from a different PC.

Does that make sense?

QREVALUE.ProblemDescription = QREVALUETMMKVEH.ProblemDescription, 
QREVALUE.InterimAction = QREVALUETMMKVEH.InterimAction, 
QREVALUE.QualitAlertNumber = QREVALUETMMKVEH.QualitAlertNumber, 
QREVALUE.SortedQuantity = QREVALUETMMKVEH.SortedQuantity, 
QREVALUE.[SortCompletion Date] = QREVALUETMMKVEH.[SortCompletion Date], 
QREVALUE.OccurenceNoticeDate = QREVALUETMMKVEH.OccurenceNoticeDate, 
QREVALUE.PartsShippedDate = QREVALUETMMKVEH.PartsShippedDate, 
QREVALUE.ShipmentTracking = QREVALUETMMKVEH.ShipmentTracking, 

Open in new window

I have one WSUS server configured and a GPO for WSUS is applied to the domain. When I install a new server add it to the domain, by default it goes to "Computers" OU. I try to install Windows Updates, I see it is connecting to WSUS server because the GPO is successfully working.

Then I created a new "West" OU and create a sub OU inside of it call "servers" and move the New server to "servers" OU. Now it directly downloads updates from the internet. Please tell me why it is not updating through WSUS?
Dear All,

           I have a WSUS server, and recently have update such as KB4511872 , 4512506, 4512486, 4511872, 4512506, some computer has installed this update, and cant boot into window and goes to repair mode, after repaired succeed, it loop back to window updates, and it goes to repair mode again, and I go to WSUS console and declined these update, but I realized these update still push back to computer, any idea how I can really declined these update ? any help would be appreciated

Recently someone suggested to me to manage Windows Updates in my organization using a WSUS server, SCCM and powershell patch audit utility.   Before the person suggested this this to me I thought I would manage updates using 1 of the 3 above, not all three.  I am familiar with WSUS, and powershell patch audit utility.  

 Could someone provide me with a top-level breakdown of how these components work together?  
Or... can you suggest your preferred method?
SBS 2008, WSUS/SUSDB folder has grown to over 100 GB. The server cleanup wizard aborts. Tried cleaning up one item at a time - still aborts. Deleted all files from the WSUS Content folder - SUSDB still over 100 GB.
(Obviously, system has not been maintained - I was asked to help resolve this issue)
Any suggestions?
2019-09-07      09:04:54:640      1196      3130      Misc      ===========  Logging initialized (build: 7.8.9200.17185, tz: +0530)  ===========
2019-09-07      09:04:54:640      1196      3130      Misc        = Process: C:\Windows\system32\svchost.exe
2019-09-07      09:04:54:640      1196      3130      Misc        = Module: c:\windows\system32\wuaueng.dll
2019-09-07      09:04:54:640      1196      3130      Service      *************
2019-09-07      09:04:54:640      1196      3130      Service      ** START **  Service: Service startup
2019-09-07      09:04:54:640      1196      3130      Service      *********
2019-09-07      09:04:54:718      1196      3130      Agent        * WU client version 7.8.9200.17185
2019-09-07      09:04:54:718      1196      3130      Agent        * Base directory: C:\Windows\SoftwareDistribution
2019-09-07      09:04:54:718      1196      3130      Agent        * Access type: No proxy
2019-09-07      09:04:54:718      1196      3130      Service      UpdateNetworkState Ipv6, cNetworkInterfaces = 0.
2019-09-07      09:04:54:718      1196      3130      Service      UpdateNetworkState Ipv4, cNetworkInterfaces = 1.
2019-09-07      09:04:54:718      1196      3130      Agent        * Network state: Connected
2019-09-07      09:04:54:734      1196      3130      Setup      WARNING: SelfUpdate is in an error state
2019-09-07      09:04:54:749      1196      3130      Service      UpdateNetworkState Ipv6, cNetworkInterfaces = 0.
2019-09-07      09:04:54:749      1196      3130      Service      UpdateNetworkState Ipv4, cNetworkInterfaces = 1.
2019-09-07      09:04:55:015      1196      3130      Agent      ***********  Agent: Initializing global settings cache  ***********
2019-09-07      09:04:55:015      1196      3130      Agent        * Endpoint Provider: 00000000-0000-0000-0000-000000000000
2019-09-07      09:04:55:015      1196      3130      Agent        * WSUS …
Rowby Goren Makes an Impact on Screen and Online
LVL 19
Rowby Goren Makes an Impact on Screen and Online

Learn about longtime user Rowby Goren and his great contributions to the site. We explore his method for posing questions that are likely to yield a solution, and take a look at how his career transformed from a Hollywood writer to a website entrepreneur.

Hello All,

I am having an issue with WSUS on a 2019 Server.  The updates for Windows 10 are downloading to the client systems but they are never told to install them.  I have set the GP to download and install but they don't seem to be doing that.  This is not just one Windows 10 computer but all of them.  I have attached a picture showing the policies that are managed by the domain and it shows that they are to download and notify the user.  Very odd - any suggestions?


Hi Expert

How to apply windows patches in an offline environment, due to the restrict environment.

Please note the host are running using the "Hyper V management".

According to my research, i am aware that by using another option is WSUS offline, but it was not improve
by the management.

Are there other option by using Powershell, to reduce the manual intervention?

Appreciate your prompt response.
I need to get 9 workstations to be able to be seen by WSUS in the server 2016. No luck seeing them at this point?
We are not running a wsus server and need to disable several windows updates from running.  This needs to be done on both win10 and win7 …  

Can this be done using powershell ?

Thanks …


We use an internal WSUS server to deploy MS Updates to our servers and workstations.

I am looking at this link and trying to identify the KB number and make sure our WSUS server has downloaded that KB to deliver.

Does anyone know the KB this link is referring to?

Many thanks.
With Windows Server 2019 is there a definitive way to regain control of updates and reboots?  Please tell me with WSUS or otherwise you still have the ability to delay (indefinitely any updates from being installed as well as complete control of IF and WHEN they should be installed as well as WHEN we can manually do an update.  Microsoft has been doing an absolute PATHETIC job with their updates, blowing up the world with Windows 10.  They no longer test the way the used to, I guess it is less costly to test on the general public.

It "was" supposed to take the place of an Enterprise operating system such as NetWare, it's not a phone and that is how they are treating it if you no longer have control.  Anyone?

Thanks guys!!!
Is ABC-Deploy's ABC-Update freeware a stable and/or secure tool for an enterprise environment?

I've used it on a few client systems that were having trouble connecting to the WSUS. It gets the job done but I don't have any previous experience or knowledge of the vendor/product...
Hi, our current infrastructure has Server 2008 and Server 2008 R2. All the Windows servers are updated with WSUS and servers are supposed to receive Windows updates only via WSUS. We are in the process of upgrading the system to Server 2016 and Server 2012 R2. Below are my questions

1. I'm going to use a newly installed Server 2016 Domain controller as WSUS. Is that a problem?
2. Should I migrate from Old server 2008 WSUS to Server 2016 WSUS? or Deploy a new WSUS only for new servers?
3. Can I have some supporting documents for this?

Thanks a lot,
Dear All

              I would like to reinstall WSUS on server 2012 r2 with version 6.3.9600.18694, just wonder if all the clients computer will automatically connect back to the WSUS itself if the GPO is remain unchanged ? the reason I plan to reinstall it because I have many client computer not yet report to the wsus console, and also some computer stop reporting to wsus since in year 2018, I been finding many method from internet, it doesn't work, any help would be appreciated, thanks

Python 3 Fundamentals
LVL 19
Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

I had this question after viewing Windows 8 Updates Failing.

We have WSUS 3.0 over Windows 2008 server R2.  None of the servers at the enviroment reports the status of their updates but all the workstations (Windows 10) does.
The servers are Windows 2008 server R2 and Windows 2012, all the servers shows at the WSUS console.
When we try to update at server with Windows 2012 the error code is 80096002 and in Windows 2008 server the error code is 800B0001
The group policy about updates is the same for Workstations and Server (looking for the WSUS server)
I don't understand why at the server enviroment there is not updates
I am attempting to upgrade clients to Windows 10, version 1903.  In WSUS console, I am asked to approve the "business edition" or the "consumer edition"  Question: which do I pick?  Most of the machines involved come with Windows 10 Pro, OEM from HP.  I'm afraid if I choose the wrong one, I'll get a company wide licensing issue.  Thanks much.
I am running WSUS 2012 R2, and my 2TB drive is almost full of the wsus content.  The WSUS folder is at almost 1.5TB and I didn't even select all the options, only that I need for my organization.

Is there a way to delete old updates from my drive via WSUS?  When I go to C:\wsus_database\WsusContent, I see different folders with .cab files, and  it's probably not wise to delete files directly that way, right?

Any suggestions?
Writing a script to determine which windows servers have available updates
Dear All

           I have a question regarding to WSUS on server 2012, having checked the console in WSUS, i see there are some computers last status report showing "Not Yet Reported", i have tried to delete the problem computer from WSUS console, and run below command in the problem computer, and i dont see the computer appear back from WSUS console, any help would be appreciated,

net stop bits
net stop wuauserv
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v AccountDomainSid /f
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v PingID /f
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v SusClientId /f
reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v SusClientIDValidation /f
rd /s /q "C:\WINDOWS\SoftwareDistribution"
net start bits
net start wuauserv
wuauclt /resetauthorization /detectnow
PowerShell.exe (New-Object -ComObject Microsoft.Update.AutoUpdate).DetectNow()

Dear All

           i have a WSUS server and found that from the WSUS report there are some computer not able to contact WSUS for more than 100 days, and having check for the problem computer, see that there is windows update error 80072EE2, having followed below website method to do, but i still can not fix it, any help will be appreicated



Windows Server Update Services (WSUS), previously known as Software Update Services (SUS), is a computer program developed by Microsoft that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers.

Top Experts In