locked
Updates has been installed ignoring Domain Policies RRS feed

  • Question

  • I'm the AD Admin (including WSUS [WSUS 6.3 on Win2012]) of an enterprise with 1 domain /8 child domains (Server 2008R2) and about 10000 users. This night the chaos has reigned: the Windows Update Policy has been ignored by the most of the servers and 4 new updates (KB4012212, KB4012215, KB4012204 and KB4013867) has been deployed and installed, restarting part of those servers. Affected servers are from various domains and Windows 2008/2012. This policy auto-downloads and notify for install updates. The servers I have checked are in the correct OU and the correct Policy was applied to. Checking the registry, the settings for the policy are correct. However, the patches has been installed and the servers rebooted. This policies has been worked fine until today.

    I'm puzzled and I do not know what else to look at. What else can I check?

    ******

    UPDATE

    ******

    Question: I'd configured a "deadline" of 7 days for a group of servers to install updates. Can somebody confirm that the application of this deadline ignores the group policies about WSUS?

    Thanks in advance!




    • Edited by Jordisans Wednesday, March 22, 2017 4:03 PM
    Wednesday, March 22, 2017 11:56 AM

Answers

All replies