How does SWUP actually works when using WSUS ?
Hello.
I haven't found anything in the documentations so i thought i ask here.
I have som trouble to grep how SWUP actually works when WSUS are in use, MS patches that are not approved or declined in WSUS still shows up in SWUP and are not exluded even if i make an exlution.
This is now it looks like in SWUP
This is how the policy is configured
WSUS
Any ideas why patches falls through the crack ?
Br
Mattias
Comments
-
Hello Mattias,
Seems that you had configured exclusions incorrectly.
All parts of one row separated by ";" are joined by logical AND.
So, for example, if you wish to exclude patches for Windows 8.1, IE, Office and .Net framework, put each of this exclusions in a separate row of the table.
Best regards,
Vad
5 -
Thanks for you answer.
Now it works better, for critical and important patches anyway.
non-security patches are still not exluded
Br
Mattias
0 -
Did you try to exclude non-security updates from scanning? On your screenshot they are included.
Best regards,
Vad
0 -
I tried that, but that also exludes 3rd party patches, and i only want it to exlude patches handled by WSUS
Br
Mattias
0 -
I see. Please, contact support. Looks like Software Updater can't identify, that your machine is configured to use WSUS, for some reason. We will need detailed information from one of affected machines for investigation.
Best regards,
Vad
1 -
Thanks for your answers.
I have created a support request now.
Br
Mattias
0 -
Mathias, can you please give us feedback when you will have your problem solved by support in order we all get the information here ?
Thanks a lot0 -
Sorry for the late post
i got some clarification from support and it works at it should.
MS patches still shows up i portal but they never gets installed when a WSUS is in use.
I wish they werent visable in PSB portal as they generate "red alerts" unless you approve everything security related on the WSUS wich is not always the best option.
0