Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Wsus server

Status
Not open for further replies.
sdabreo

sdabreo

IS-IT--Management
Oct 3, 2002
50
IN
I have WSUS server in my office for windows patch management. My Domain controller is not getting displayed in the WSUS server.

DC - ismartblr1 OS : win2k3 domain : llspl
WSUS : ismartblr-wsus OS - win2k3

Wsus server is joined in llspl domain. I have already configured GPO, all my other workstation in this domain is displayed in WSUS.

Is there any way i Can my DC into WSUS manually or automatically. Kindly help.
 
Sort by date Sort by votes
on the dc
start run
gpedit.msc
go to admin templates on computer and then widows something
then windows update
set update url to wus box
 
Upvote 0 Downvote
ok no, do not use gpedit.msc for this if you have more than 1 DC. Use a policy at the domain controllers OU level. If only 1 DC, then gpedit is fine.

-Brandon Wilson
MCSE:Security00/03
MCSA:Messaging00
MCSA:Security03
A+

 
Upvote 0 Downvote

Can u pls. elaborate , where exactly this particular setting is?

How Can i my DC into WSUS computer list?
 
Upvote 0 Downvote
a domain based policy will work to, but i wouldnt do that unless you want the same settings applying to all systems.

the settings you need should be in:

computer config\administrative templates\windows components\windows update

in particular, configure automatic updates, and specify intranet microsoft update service location will be of interest to you...but you will probably see more you like :)

-Brandon Wilson
MCSE:Security00/03
MCSA:Messaging00
MCSA:Security03
A+

 
Upvote 0 Downvote
my wsus intranet url is displayed in GPO setting. But my concern is my DC netbios name is not displayed in WSUS computer list. while applying group policy all hosts in the domain or OU would have included into WSUS. but it's happened in my case.

Kindly help.
 
Upvote 0 Downvote
I have directly applied GPO settings to the domain controller container( Replicated the same settings of default domain controller policy) . Have seen the entries reflecting in registery of DC also. But I found somet0hing unusal in windowsupdate.log. Pasted for ur reference....



2008-07-28 19:05:39+0530 804 348 GetConfig: 0x80072efd
2008-07-28 19:05:39+0530 804 348 PT: Cannot recover from fault, origin=GetConfig, hr=0x80072efd
2008-07-28 19:05:39+0530 804 348 Failed to obtain cached cookie with hr = 80072efd.
2008-07-28 19:05:39+0530 804 348 Failed to upload events with hr = 80072efd.
2008-07-28 19:15:39+0530 804 40c Successfully opened event cache file at C:\WINDOWS\SoftwareDistribution\EventCache\{C55441FB-352D-41B0-9002-39208AFB39D8}.bin for reading.
2008-07-28 19:15:39+0530 804 40c PT: Using serverID {3DA21691-E39D-4DA6-8A4B-B43877BCB1B7}
2008-07-28 19:15:39+0530 804 40c PT: Using server URL 2008-07-28 19:15:39+0530 804 40c PT: Calling GetConfig on server
2008-07-28 19:15:39+0530 804 40c Add header for accept-encoding: xpress succeeded
2008-07-28 19:16:00+0530 804 40c SendRequest failed with hr = 80072efd. Proxy List used: <192.168.1.5:8080> Bypass List used : <(null)> Auth Schemes used : <>
2008-07-28 19:16:00+0530 804 40c GetConfig: 0x80072efd
2008-07-28 19:16:00+0530 804 40c PT: Cannot recover from fault, origin=GetConfig, hr=0x80072efd
2008-07-28 19:16:00+0530 804 40c Failed to obtain cached cookie with hr = 80072efd.
2008-07-28 19:16:00+0530 804 40c Failed to upload events with hr = 80072efd.
2008-07-28 19:16:27+0530 804 328 Service received connect notification
2008-07-28 19:16:27+0530 804 b90 AU received event of type: 3
2008-07-28 19:16:32+0530 804 328 Service received disconnect notification
2008-07-28 19:16:32+0530 804 b90 AU received event of type: 3
2008-07-28 19:16:32+0530 804 328 Service received connect notification
2008-07-28 19:16:32+0530 804 b90 AU received event of type: 3


In the above highlighted line Proxy list used it's showing 192.168.1.5 but actually my proxy server ip is 192.168.1.6.

Is this anyway contributing the issue?

Kindly help.
 
Upvote 0 Downvote
you say your proxy server IP....are you pointing them to a proxy server and then redirecting the requests? or should they be resolving as normal, to an internal server name/ip?

-Brandon Wilson
MCSE:Security00/03
MCSA:Messaging00
MCSA:Security03
A+

 
Upvote 0 Downvote
Proxy is nothing to do with my internal request, it's only for internet access. I just figured out that ip in the log, is that any way disturbing the whole?

otherwise pls. tell me how do i install automatic update client ? is there any diagnose tool available?

Pls. guide.
 
Upvote 0 Downvote
I already linked my default domain policy to domain controller container, Also enclosed the client diagnose resutl below. As per the result, seems to be no problem, but still i am not getting updates also my DC is not displaying wsus console. Kindly help


WSUS Client Diagnostics Tool

Checking Machine State
Checking for admin rights to run tool . . . . . . . . . PASS
Automatic Updates Service is running. . . . . . . . . . PASS
Background Intelligent Transfer Service is not running. PASS
Wuaueng.dll version 7.0.6000.381. . . . . . . . . . . . PASS
This version is WSUS 2.0

Checking AU Settings
AU Option is 4: Scheduled Install . . . . . . . . . . . PASS
Option is from Policy settings

Checking Proxy Configuration
Checking for winhttp local machine Proxy settings . . . PASS
Winhttp local machine access type
<Direct Connection>
Winhttp local machine Proxy. . . . . . . . . . NONE
Winhttp local machine ProxyBypass. . . . . . . NONE
Checking User IE Proxy settings . . . . . . . . . . . . PASS
User IE Proxy
192.168.1.6:8080
User IE ProxyByPass
<local>
User IE AutoConfig URL Proxy . . . . . . . . . NONE
User IE AutoDetect
AutoDetect in use

Checking Connection to WSUS/SUS Server
WUServer = WUStatusServer = UseWuServer is enabled. . . . . . . . . . . . . . . . . PASS
Connection to server. . . . . . . . . . . . . . . . . . PASS
SelfUpdate folder is present. . . . . . . . . . . . . . PASS

Press Enter to Complete
 
Upvote 0 Downvote
no you dont link the default domain policy to the domain controllers OU. Just unsure the setting is applying to DCs by running gpupdate /force, but it is completely unnecessary to link the domain policy to the DC OU. The domain controllers policy should be used for settings for DCs, and as long as no automatic updates settings are set in it, then the domain policy will apply these settings.

Have you already gone through ?

-Brandon Wilson
MCSE:Security00/03
MCSA:Messaging00
MCSA:Security03
A+
 
Upvote 0 Downvote
BTW that corss linking of the default domain policy to the domain controllers OU can potentially cause some MAJOR issues. I suggest you do away with that immediately.

-Brandon Wilson
MCSE:Security00/03
MCSA:Messaging00
MCSA:Security03
A+

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

antonio_dsanchez
  • Locked
  • Question
post-installation WSUS windows server 2016
Replies
0
Views
219
antonio_dsanchez
antonio_dsanchez
MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
207
MaioMaio
MaioMaio
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
257
Aquiles Vidal
Aquiles Vidal
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
304
suncit
suncit
jamescpp
  • Locked
  • Question
Windos OpenSSH server vulnerability
Replies
0
Views
246
jamescpp
jamescpp

Part and Inventory Search

Sponsor

Back
Top