none
WSUS Upstream Server Change

    Question

  • Hello,

     

    We are currently running two seperate environments for updating our servers. One WSUS server updates all workstations/servers in our local domain and then there is another WSUS server that acts as an upstream server for all of our child domains. I would like to change this setup to only have one main WSUS server (the one located in my local domain) and then have all the child domain WSUS servers as replicas of that upstream server..

    My question is can i just make that change on the these child domain WSUS replica servers or would i need to start from scratch on them since there is already a DB on these servers?

    All servers are Windows Server 2008 R2, WSUS 3.0 SP2

    Thanks!

    Monday, March 21, 2011 7:45 PM

Answers

  • You will need to do three things:

    1. Confirm that all settings for your local server match those of the existing upstream server.

    2. Make sure that the WSUS server in your local domain accurately reflects ALL EXISTING approvals on your current 'other server'.

    3. Reconfigure each replica server to synchronize from their new upstream server (the server in your local domain).

    That's the absolute minimum required; however, "best practice" would have you reinstall each replica server, to ensure that those servers are, in fact, replicas of the new upstream server. Moving replica servers from one hierarchy to another runs the risk of orphaning content on the replicas, or removing critical approvals altogether.


    Lawrence Garvin, M.S., MCITP:EA, MCDBA, MCSA
    Principal/CTO, Onsite Technology Solutions, Houston, Texas
    Microsoft MVP - Software Distribution (2005-2011)
    My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.Garvin
    My Blog: http://onsitechsolutions.spaces.live.com
    Monday, March 21, 2011 8:21 PM
    Moderator

All replies

  • You will need to do three things:

    1. Confirm that all settings for your local server match those of the existing upstream server.

    2. Make sure that the WSUS server in your local domain accurately reflects ALL EXISTING approvals on your current 'other server'.

    3. Reconfigure each replica server to synchronize from their new upstream server (the server in your local domain).

    That's the absolute minimum required; however, "best practice" would have you reinstall each replica server, to ensure that those servers are, in fact, replicas of the new upstream server. Moving replica servers from one hierarchy to another runs the risk of orphaning content on the replicas, or removing critical approvals altogether.


    Lawrence Garvin, M.S., MCITP:EA, MCDBA, MCSA
    Principal/CTO, Onsite Technology Solutions, Houston, Texas
    Microsoft MVP - Software Distribution (2005-2011)
    My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.Garvin
    My Blog: http://onsitechsolutions.spaces.live.com
    Monday, March 21, 2011 8:21 PM
    Moderator
  • Thank you for your reponse, i was affraid that was what was going to have to happen.
    Friday, March 25, 2011 2:24 PM