Hello,
First, refer to the following article to get some information about the Group Policies could applied to WSUS clients.
Configure Group Policy Settings for Automatic Updates
https://docs.microsoft.com/en-us/windows-server/administration/windows-server-update-services/deploy/4-configure-group-policy-settings-for-automatic-updates
Then I would give some explanation and advice for you situation.
1> Those Group Policies tell clients how to interact with WUA, that means how to scan/download/install updates from WSUS.
How to make GPO policy for 121 different branch location? It really depends on your network hierarchy. If all your branches are in the same domain, you could create a set of GPOs and link them to your each branch OU. If they are in the different
domains, you need to create GPOs in each domain. If there are work group computers, use local Group Policy instead.
2> To make all your clients point to the single WSUS server, just set the "Specify
intranet Microsoft update service location" to your WSUS server, and make sure all you clients have the same configuration for this policy.
3> To make your clients report in their branch folder in WSUS, we need configure and apply policy "Enable
client-side targeting". It could specify a computer group name for clients which link to the policy. So you should create different GPO to target the branch group to each branch OU. Just two things need to note.
- You need to create each branch group in the WSUS console.
- You need to select "Use Group Policy or Registry settings on computers" in WSUS Options/Computers.
Hope my answer could help you and look forward to your feedback.
Best Regards,
Ray
Please remembers to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact
tnmff@microsoft.com.
