once we are remoted into them. The problem that I have noticed with our
WSUS is that at times it is not pushing the lastest updates out to clients
therefore when you check for updates it shows that the client's computer is
up-to-date.
This issue obviously only happens once the PC is added to the domain.
In the past to combat this issue I had to update computer off the domain and
then add it to the domain. Recently I saw that if you select "Check online
for updates from Microsoft Update" under where it says "Managed by your system
administrator" it should bypass the WSUS server. But I have found another method
that bypass the update server and go directly to Windows Update(WU) website for
updates.
WSUS server is put into play for a few reasons. (1) limit bandwidth
usage. This prevents all clients windows computer equipments from going out the
to Windows update website for the same windows updates. (2) block specify
updates that are known to cause incompatibility issues. This is not fully
working on our side but when fully in effect should restrict updates.
Therefore please run "afWU" after windows is fully updated so that it is managed
by your WSUS server.
Note: This code applies to Windows Vista, 7, and 8. I have not tested it on windows XP.
To Bypass WSUS server:
Copy to desktop and save as a batch file "beWU.bat" with the following contents. Also please run as administrator
REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" /v UseWUServer /t REG_DWORD /d 0 /f
net stop "Windows Update"
net start "Windows Update"
control /name Microsoft.WindowsUpdate
To Enable WSUS server:
Copy to desktop and save as a batch file "afWU.bat" with the following contents. Also please run as administrator
REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" /v UseWUServer /t REG_DWORD /d 1 /f
net stop "Windows Update"
net start "Windows Update"
control /name Microsoft.WindowsUpdate