To stay updated on your favorite discussions, please create an account or log in. Then, click the Bookmark icon to subscribe and receive notifications.

How does SWUP actually works when using WSUS ?

MattiasN
MattiasN Posts: 10 Security Scout
edited June 2024 in Elements Endpoint Protection (EPP)

Hello.

 

I haven't found anything in the documentations so i thought i ask here.

 

I have som trouble to grep how SWUP actually works when WSUS are in use, MS patches that are not approved or declined in WSUS still shows up in SWUP and are not exluded even if i make an exlution.

 

This is now it looks like in SWUP 

PM-1.PNG

 

This is how the policy is configured

pm-2.PNG

 

WSUS 

PM-3.PNG

 

Any ideas why patches falls through the crack ?

 

Br

Mattias

 

Comments

  • MattiasN
    MattiasN Posts: 10 Security Scout

    Thanks for you answer.

     

    Now it works better, for critical and important patches anyway.

    non-security patches are still not exluded Smiley Sad

     

    Br

    Mattias 

     

     

  • Vad
    Vad Posts: 1,069 Cybercrime Crusader

    Did you try to exclude non-security updates from scanning? On your screenshot they are included.

     

    Best regards,

    Vad

  • MattiasN
    MattiasN Posts: 10 Security Scout

    I tried that, but that also exludes 3rd party patches, and i only want it to exlude patches handled by WSUS

     

    Br

    Mattias

  • Vad
    Vad Posts: 1,069 Cybercrime Crusader

    I see. Please, contact support. Looks like Software Updater can't identify, that your machine is configured to use WSUS, for some reason. We will need detailed information from one of affected machines for investigation.

     

    Best regards,

    Vad

  • MattiasN
    MattiasN Posts: 10 Security Scout

    Thanks for your answers.

     

    I have created a support request now.

     

    Br

    Mattias

  • Nicolas26000
    Nicolas26000 Posts: 2 Security Scout

    Mathias, can you please give us feedback when you will have your problem solved by support in order we all get the information here ?


    Thanks a lot

  • MattiasN
    MattiasN Posts: 10 Security Scout

    Sorry for the late post :/

     

    i got some clarification from support and it works at it should.

    MS patches still shows up i portal but they never gets installed when a WSUS is in use.

     

    I wish they werent visable in PSB portal as they generate "red alerts" unless you approve everything security related on the WSUS wich is not always the best option.

This discussion has been closed.

Categories