Sign in
 
HomeWindows Server 2012Windows Server 2008 R2Windows Server 2003LibraryForums
Windows Server TechCenter >
WSUS group policy issue

Answered WSUS group policy issue

  • Friday, December 28, 2012 12:07 PM
     
     
    Sign In to Vote
    0

    Hi,

    I have setup a WSUS server 2008 R2 Enterprise, DC is running on another server 2003 R2 Standard edition and have some Windows 7 workstations. I am not able to see my clients in the WSUS console. When I do a rsop.msc on one of the client pc's, I can see the User Configuration policy was applied. I confirmed this by checking if the client pc is able to access the windows update website and it cannot. This policy is linked to the OU, which is called IT, that has the users in them and I am assuming this is why I can see the user configuration.

    However, I cannot see the Windows Update policy for Computer Configuration when running rsop.msc. The IT OU contains an OU called Computers, but it is empty.

    Should I create another GPO and link it to the Computers OU? Is it "normal" for the computers OU to be empty? or should I be able to see those pc's in the Computer OU.

     

All Replies

  • Friday, December 28, 2012 2:34 PM
     
     Answered
    Sign In to Vote
    0

    Am 28.12.2012 schrieb mad_horse:

    However, I cannot see the Windows Update policy for Computer Configuration when running rsop.msc. The IT OU contains an OU called Computers, but it is empty.

    The Computer Settings must link to Computers, Userobject can't read
    Computersettings from a GPO.

    Should I create another GPO and link it to the Computers OU? Is it "normal" for the computers OU to be empty? or should I be able to see those pc's in the Computer OU.

    Search your Computerobjects in your AD. Is it a Small Business Server?

    Winfried

    http://www.microsoft.com/germany/windowsserver2003/technologien/updateservices/default.mspx
    http://www.wsuswiki.com/Home
    Reg2xml:  http://www.reg2xml.com - Registry Export File Converter

     
  • Monday, December 31, 2012 8:29 AM
     
     
    Sign In to Vote
    0

    Hi Winfried, thanks for the response, I managed to find the container with the computer objects. No, its not SBS.

    I am facing another issue/challenge now though. I am only deploying this to one department in the organization, the IT department. The user objects are all grouped according to department and that made applying the user policy quite easy. The container with the computer objects seem to have more than just the IT department computers in it, it has all the laptop users grouped together. I am not sure if this is best/standard practice, but this is how the AD environment is currently configured.

    Seeing that I only want to deploy this to the IT department, can I just create another container call it IT Dept and move those objects in there? How easy is it to move objects from one OU to another? Are there any other steps/precautions to consider before moving objects around?

     
  • Monday, December 31, 2012 12:49 PM
     
     Answered
    Sign In to Vote
    0

    Am 31.12.2012 schrieb mad_horse:

    Seeing that I only want to deploy this to the IT department, can I just create another container call it IT Dept and move those objects in there?

    Yes, you can do this.

    How easy is it to move objects from one OU to another?

    Very easy, you can do it by drag and drop. ;)

    Are there any
    other steps/precautions to consider before moving objects around?

    No, be careful. Better way is fo you to test in a test environment.

    Winfried

    http://www.microsoft.com/germany/windowsserver2003/technologien/updateservices/default.mspx
    http://www.wsuswiki.com/Home