Windows Server Update Services (WSUS), previously known as Software Update Services (SUS), is a computer program developed by Microsoft that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers.

Share tech news, updates, or what's on your mind.

Sign up to Post

I clicked on the "Reports" tab of Server 2016 Windows Server Updates Services and was told that "The  "Microsoft Report Viewer 2012 Redistributable"  is required for this feature. Please close the console before installing this package."

So I clicked on the URL link and was directed to the website where I downloaded the "Microsoft Report Viewer 2012 runtime."

However, when I installed the "Microsoft Report Viewer 2012 runtime" ReportViewer.msi file I received a message that said "Setup is missing an installation prerequisite. -Microsoft System CLR Types for SQL Server 2012" (see the screenshot).

I have googled this and the results I have found have had me download several different MSI installation files without telling me exactly which one(s) I need to install. I want to make sure that I only install the component or program that I absolutely need and that I don't install anything extra.

So what is the best URL to visit to download and install the right "Microsoft System CLR Types for SQL Server 2012?"

Microsoft System CLR Types
Upgrade your Question Security!
LVL 12
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Hello I use WSUS on Server 2016 to deply updates throughout the LAN, I have one Upstream & on Downstream.  Everything has been working fine, until this morning when I attempt to sync the downstream to the upstream it fails.  I can ping back & forth not sure what's happened.
I have WSUS server (running on Windows server 2012 R2).  The updates sections show that the 2018-05 Cumulative Update for Windows 10 1709 for x64 based systems (KB4103727) is needed by 2 devices.    When I look at these 2 devices, they show that they need this update.   I have a total of 8 Windows 10 1709 devices.  Six of them have installed the 2018-05 cum update.  Hoever, even these 6 installed over the course of several weeks.   How can I force the windows 10 monthly updates to install when they've been downloaded to the WSUS server instead of waiting until some random date/time?  The updates are approved, do not show any failures, they just seem to sit there with approval status = install, and installed status = not installed.
I find the the Window 1803 is not available to deploy through the WSUS. Do I need to select the "Updates" in the Classifications". please note that under "Product" tab, I have already select Window 10 Version 1803 and Later Upgrade & Servicing Drivers.

Two Hyper-V virtual operating systems running Server 2016 Datacenter are unable to install Windows updates.

The Hyper-V base server and both of these virtual servers have had Windows activated.

I have run the Windows Update Troubleshooter and it says "Potential Windows Update Database error detected" and "Not fixed" (see the screenshot).

Windows Server Update Server is not being used in this environment. The Hyper-V base server has installed all Windows updates.

What can be done to fix this issue so that the updates will successfully install on these two Hyper-V virtual operating systems?

Windows Update Database error

We have a WSUS server issue.  In short, there are computers that are showing "critical" updates that are "needed", yet when we look in the UPDATES view, and try to filter by "Critical updates" that show status of "unapproved", there are none.  Not sure what is causing this anomaly. It's a 2012 Server, with the latest WSUS version.
In WSUS, Can I filter approved updates by date range?  I am trying to figure out whether an approved update caused a network issue with some laptops NICs, but I can't figure out how to filter by date.  If I select approved updates, it will crash the update services portal since it lists all updates (60k +)
We have a WSUS server that provides a validated list of Windows Updates.  The product PCs Windows 8.1 and Windows 10 will use this list to determine which updates to download from Microsoft Windows Update Server/store automatically.  Once the validated patches are download automatically, the user will decide when to install the updates manully.  This works currently.  However, I am able to select "Check online for updates from Microsoft Update" to download and install the unqualified updates manually.  Is there a way to prevent the user from selecting "Check online for updates from Microsoft Update" to download the unqualified Windows updates and not breaking what have been working?
Hello I'm trying to use WSUS to update an offline machine using Ad Hoc.  Not sure how to accomplish this, or if its even possible?

WSUS servers not reporting back - The Computer has not reported status in 7 or more days

We recently set up a WSUS enviornment and ALL the servers (Server 2016) reported in fine last week but have not since - they are all online -the client computers (W10) are reporting back ok.
I have checked the reg settings and have the WSUS server listed, windows update service is set to Manual but running.

Any ideas?
Free Tool: Site Down Detector
LVL 12
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Running "winver" from the command prompt shows that I am on Verion 6.1 7601 SP1

When I go into "Windows Update, View Update History" I see lots of FAILED updates in the last 2+ months

When I try to run "Windows Update" again it still fails, but all the other Win7 PCs on my WSUS server work

What do you recommend ?
We have the following configuration:

a WSUS server and the 1803 is NOT approved with the following global WSUS GPO's

Delivery Optimization Mode is set to Bypass
Allowed Sign updates from intranet MS update service location: enabled
Do not allow update deferral policies to cause scan against WU: enabled
Specify intranet location: http;//OURWSUSServer:8530
Active Hours: 7am - 9pm
Turn off access to all WU Features: enabled
We have lower Computer OU polices to configure Auto Updates at a certain time and enabled client side targeting
We noticed that computers were getting the v1803 update (which we do not want at this time as we just want 1709). After doing some digging around the great Google, i came across an article that suggested to change "Select when preview and feature updates are received" to use Semi-Channel and deferred it for 365 days.

Is there anything else we need to set to block to NOT receive v1803.

I have laptop users on Win10 Pro ver1607 and would like to upgrade them not to ver1703, then ver1709, etc - I'd like to upgrade them from Win10 ver1607 straight to ver1803 (or whatever is the latest supported, you understand my intent).

1. Is it possible to upgrade to the last version, or do I have to incrementally upgrade to each version in turn?
2. Can I use Powershell to upgrade to the version(s) instead of WSUS or Group Policy? WSUS has been problematic at best for this, and I don't care to keep using WSUS unless I absolutely have to. (Group Policy is problematic for remote users, and I don't care to discuss GPOs for this, please do not recommend/spend time discussing)
99% of all our computers are stating "not reported yet".  We built the new WSUS server and configured the GPO on Thursday.   The WSUS server is listing all the computers but most of them have not reported.

What would cause this?
A Windows 10 computer failed to successfully load Windows while installing Windows updates so I booted off of a Windows 10 installation USB drive, chose the "Repair" feature and then was able to perform a successful system restore to a previous point in time.

This Windows 10 computer now boots into Windows and works fine except that it is unable to install the latest Windows update (see the screenshot).

If I manually download then install this update then the update appears to install but after rebooting when I log back into Windows I either receive a message that the update didn't install of when I go back into the Windows updates I see that the same update still needs to be installed.

I have also performed the following steps attempting to resolve this issue but haven't yet been able to fix this issue:

1. Have run the Windows update troubleshooter (which always says that it has found and fixed issues but ultimately doesn't fix this issue).

2. Have run the SFC /scannow commands and then the DISM.exe /Online /Cleanup-Image /Scanhealth and then the DISM.exe /Online /Cleanup-Image /Restorehealth commands

3. Have emptied the temporary and temporary internet files

4. Have run full scans for malware and viruses and no problems have been detected.

I have also rebooted several times and have tried installing the updates using different administrator accounts but this Windows update still won't install.

What else can be done to fix this issue so that I will…
Win10 1803 systems are not offered the 2018-05 Cumulative updates (KB4103721) when connected to WSUS (here: wsus on 2012 R2, but it should not even matter)

As outlines, the new windows build refuses to work with WSUS (like it has happened before with server 2016 and Win10 1607).

Please reproduce and upvote the technet thread, so Microsoft becomes aware.
Points to anyone who takes the time to reproduce.

PS: 1709 Build 16299.402 (if you have it) is unable as well.
We are running WSUS server and the latest Win 10 update to come out, version 1803 is failing on just about every computer.
Not sure why this is occurring. Is there anyone else experiencing this and if so, how can we get this
I have been tasked with coming up with a solution to upgrade roughly 150 computers with the new Windows 10 Feature Update 1709.
I have downloaded the .ISO file, and have extracted it to launch the setup.exe file. Is there a switch(s) to use to push this out silently and without reboot? We are using ZENworks to push this out, but I'm stumped on the switches.
We do not want to use WSUS to push this out, as it would clog up our network due to the size of the update.

Any help would greatly be appreciated.


I'd like to automate WSUS deploy. That can be done using an xml:
So now I'd like to change the xml with the servername.

In other words, I need to replace the computername (Servernamexyz in my example, can change overtime) in this xml.

So I'd get the xml in $XML = get-content c:\myxml.xml
tags to replace are
<S N="ServerName">Servernamexyz</S>
and  <S N="PSComputerName">Servernamexyz</S>

How do I replace <S N="ServerName"> whatever </s> and  <S N="PSComputerName">Whatever</S> ?
I can then write result back to xml.

Thanks for your input.
Free Tool: Subnet Calculator
LVL 12
Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

I'm puzzled how to handle WSUS Feature updates for Windows 10 that won't install.  I found the thread which explains that its risky to install these major upgrade via WSUS, but the problem is, if I can't install the Feature upgrade, then no further updates will install, the PCs just stay stuck at that level.  The only way I've found around this is to to take each device off the network, install the Feature Update & then rejoin it to the network, but that's really disruptive to the users.  How are other people getting their domain based Windows 10 devices updated?
Having difficulty getting WSUS to deliver the following Anniversary update to our Win10 Pro 1607 laptops - WSUS works normally for all other updates to these laptops:

Feature update to windows 10 pro version 1703 en-us

I have a new Server 2012 R2 WSUS server pushing updates via GPO - with the update approved and showing Install on status. Once the install begins, the Win10 Pro laptop shows "Downloading 0%...." for the update, then fails shortly after with Error 0x80244007.

i've looked online and added the MIME type .esx (application/octet-stream) at the WSUS IIS server level and it shows inherited at the WSUS administration website level as well. Tried removing/replacing SoftwareDistribution folder, ran MS Update troubleshooter, it still fails.

I've attached my GPO settings also in a WordPad file, and the resultant Windowsupdate.log is below for the laptop as well.

Please let me know what might help. Thanks!


2018/05/04 09:46:47.1291913 1236  7720  Misc            Got WSUS Client/Server URL: http://ds-wsus:8530/ClientWebService/client.asmx""
2018/05/04 09:46:47.1292977 1236  7720  ProtocolTalker  OK to reuse existing configuration
2018/05/04 09:46:47.1293030 1236  7720  ProtocolTalker  Existing cookie is valid, just use it
2018/05/04 09:46:47.1293045 1236  7720  ProtocolTalker  PTInfo: Server requested registration
2018/05/04 09:46:47.1723160 1236  7720  Misc            Got WSUS Reporting URL: …
Three servers in WSUS are acting strange.  I have three servers, each named server1, server2, and server3.  I can get one of them to check in with WSUS, but not the other two, and they are trading places.  I can get 1 to check in, and then when I get 2 to check in, 1 disappears.  It seems I can only get one of the three to check in.  I have had each of them, at one time or another showing in WSUS, but the other two not.  I can restart services and force a checkin, but I can only get one server of the three to check in at a time.  

I have verified the GP, verified DNS, made sure the IPs are all different.  I just can't get more than one of the three to check in.  

Anyone seen this?

Would like to replace my 2012R2 WSUS server with a 2016 standard WSUS only role.  My question is there any value in making this a downstream server to get all of the metadata?
I am having so many issues with the 2012 WSUS  that i just want to deploy a new 2016 WSUS and decommission the old 2012 WSUS.  My enviroment is 95% windows 10 Pro with some Windows 7 Pro  that are currently being replace.

any thoughts or best practices are welcome and thanks in advance

Thanks  Alain
after installing Office 2016 there are still loads of updates from WSUS, can I download a single cumulative update patch and slipstream it or similar into the Office install?
Hello ,

Please tell me WSUS version compatible with windows 2016 servers

WSUS Version: 3.2.7600.226
 Windows 2008 R2

We need to upgrade the version to make it compatible with windows 2016 servers ( Members servers ) as well. Kinldy let us know the version to which we need to upgrade and provide the upgrade steps.


Windows Server Update Services (WSUS), previously known as Software Update Services (SUS), is a computer program developed by Microsoft that enables administrators to manage the distribution of updates and hotfixes released for Microsoft products to computers.