+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 23
How do you do....it? Thread, How do you install all windows updates after a workstation rebuild? in Technical; I'm looking for a way to have windows updates get slipstreamed or auto installed so that when I rebuild a ...
  1. #1
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39

    How do you install all windows updates after a workstation rebuild?

    I'm looking for a way to have windows updates get slipstreamed or auto installed so that when I rebuild a workstation and it gets to the logon screen it's fully patched and up-to-date. I'm trying to secure some funds to purchase SpecOps Deploy 4.0 (leverages WDS), but if not i'll probably remain on Fog. I would have WSUS setup as well.

    The way I see if i've got a few options:

    • Capture an image that already has had Windows Update manually run - the problem here is i doubt i'm going to end up with one image, more likely it will be 3 or more. I don't want to have to keep refreshing images and potentially damaging the images just to install a couple of updates.
    • Manually setup each individual update and deploy it like an application - similar to how our current CC3 system operates, this appeals to me as management is more central but updates would be delayed and I would have to assume that all MS updates would be friendly to the process.
    • Find a way / buy a program to mount the WIM images and inject the updates - I've been told this is potentially a future development for Deploy 4.0, but I haven't found anything else that would do it.
    • Buy a program called WuInstall Pro - This is actually really cheap for education, $250 for unlimited client use. It's a command line utility that can apparenty install all Windows updates, accepting the EULAs as you go. This could be scripted into the build somewhere and appears to be exactly what I need.


    Anyone know of any other way to guarantee that a newly built workstation is up to date? I don't mind the standard WSUS to keep them up to date, but I don't want anything being used half patched.

  2. #2


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,689
    Thank Post
    352
    Thanked 794 Times in 714 Posts
    Rep Power
    346
    If you don't want to maintain an image how about maintaining an installation CD? You could use nlite to bundle the vast majority of updates into the installation (and drivers if you wished) then leaving WSUS to fix them up afterwards.

    I find this approach works particularly well; we made a point of updating the CD every month or two with the latest updates available and as time goes on you build a pretty good baseline.

  3. Thanks to kmount from:

    morganw (31st January 2010)

  4. #3
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39
    Thanks, some of the images may not be base images though, they might have applications in as well. So going from the install media to refresh images adds a lot of reinstall work.

  5. #4
    RSoP_Robbers's Avatar
    Join Date
    Oct 2009
    Location
    Doncaster
    Posts
    101
    Thank Post
    13
    Thanked 8 Times in 8 Posts
    Rep Power
    11
    It would mean a little more manual work or use of the Concatenate feature in Excel but if you went onto the Microsoft Catalog (The web based directory version of Windows Update), you could download all of the updates that you want to a network share.

    Although it may not work for all, you can extract each of the .exe update files into the expanded packages. From there, you could run the updates that you want for each of the machines in a script, (perhaps run from your sysprep config or Group Policy - depending which you have access to) along with command line switches to accept the EULA.

    Again, not all updates allow the acceptance of the EULA.

    I do also think that some of the newer updates actually allow silent install in the compressed form.

    I'm currently doing the same at the moment so I'll share some ideas or samples if you like.

  6. Thanks to RSoP_Robbers from:

    morganw (31st January 2010)

  7. #5
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39
    Thank you. Is there a general rule as to the updates which require user interaction? I'm thinking i'd only need the security / bug fix type of updates to go on, not anything to install new applications like IE8.

    Do the updates usually share common switches for silent installation or do you have to do your homework everytime?

    I found a list on the WPKG site but i'm not sure how up to date it is...
    Category:Silent installers for Windows Hotfixes - WPKG | Open Source Software Deployment and Distribution

  8. #6
    RSoP_Robbers's Avatar
    Join Date
    Oct 2009
    Location
    Doncaster
    Posts
    101
    Thank Post
    13
    Thanked 8 Times in 8 Posts
    Rep Power
    11
    Most of the hotfixes tend to have the same wrapper.

    I think the page that you supplied is out of date however, the program in that page looks rather handy!

    In our scenario, if a workstation is down in a classroom, we try to re-image it as soon as possible to reduce the effect on teachy and learny. The one problem with this obviously is "busy fingers".

    We have a couple of batch scripts that have a little bit of detection in the event that the script has already run etc and also in the event that a student presses the reset button.

    It appears that program has a better grasp of that scenario but also has a mahoosive screen telling people to keep their fingers in their pockets, relaxing and watch the blinking lights.

    I think I'm going to take another look at things tomorrow now. I shall keep reporting back!

  9. #7


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,689
    Thank Post
    352
    Thanked 794 Times in 714 Posts
    Rep Power
    346
    Quote Originally Posted by morganw View Post
    Thanks, some of the images may not be base images though, they might have applications in as well. So going from the install media to refresh images adds a lot of reinstall work.
    I don't understand your reply?

    If you use nlite this will affect new installations only, or are you looking for a solution that will go on regardless of "how" the PC ended up with windows on or if its an existing built station etc?

    In that case, consider the Logistix update packs.

    Windows XP

  10. #8
    Skinny's Avatar
    Join Date
    Dec 2008
    Location
    Cheshire
    Posts
    47
    Thank Post
    5
    Thanked 2 Times in 2 Posts
    Rep Power
    12
    Do you know about this site?? I've never used it before (going to tho) but reading the RIS sticky it seems a few people on here swear by it.

  11. #9
    DrCheese's Avatar
    Join Date
    Apr 2008
    Posts
    1,026
    Thank Post
    97
    Thanked 158 Times in 107 Posts
    Rep Power
    58
    I usually don't find this an issue, Our images are anything from 1 to 12 months old at any given time and they just get picked up by WSUS pretty quickly, so within a day or so they are backup to the current baseline.

    With Vista/7 imaging you can even force an update check against WSUS during the install process.

  12. #10


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,689
    Thank Post
    352
    Thanked 794 Times in 714 Posts
    Rep Power
    346
    Quote Originally Posted by Skinny View Post
    Do you know about this site?? I've never used it before (going to tho) but reading the RIS sticky it seems a few people on here swear by it.
    Yep, I push those into nlite

  13. #11
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39
    I thought than nLite would only be for manual installs or RIS, I would either end up with WDS managed through Deploy 4.0, or normal syspreped images. Or can the use nLite on a WIM image?

    Thanks for the pointer to the Logistix packs, are they kept up to date?

  14. #12


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,689
    Thank Post
    352
    Thanked 794 Times in 714 Posts
    Rep Power
    346
    Thanks for the pointer to the Logistix packs, are they kept up to date?
    Yes, maintained by a chap on these fine forums.

    He posts a monthly update pack which is incredibly useful for those rebuilds (or bring up to levels).

    Not sure about nlite/wim, not something I've done. Sorry.

  15. #13
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39
    Are there any updates that actually need to run through the proper update services or are they effectively just downloaded and executed anyway? Also if I was looking at just the post SP3 updates will there be any dependency issues or is the order irrelevant as long as the stuff like Windows Installer is up to date first?

  16. #14
    mb2k01's Avatar
    Join Date
    Jan 2007
    Posts
    1,133
    Thank Post
    189
    Thanked 228 Times in 194 Posts
    Rep Power
    92
    Hi Morgan,

    We are pretty much the same scenario described by DrCheese above. If we're talking a couple of machines in a misc room then we'll re-image and leave WSUS to do its business. (If we've gone a step further and physically brought the PC to our office or know the image is quite out of date, we'll force the updates)

    If we're talking a whole room re-image (which we tend to plan ahead and revolve over half terms) then we'll actually create a new base image to keep our image library up to date.

  17. #15
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    39
    Thanks Mark, I think it might come down to speed and reliabilty in the end. If running through all the updates after the imaging stage is working well then I think it's worth it to guarantee that all the updates are on every workstation without any normal WSUS scheduling. I'll see if I can get a trial version of WUInstall Pro to see how reliable it is.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. RM CC3 Workstation Rebuild - Having Problems!
    By bandgeekmafia78 in forum Windows
    Replies: 6
    Last Post: 10th March 2008, 04:08 PM
  2. How long should it take to install Sims Workstation?
    By Kyle in forum Educational Software
    Replies: 5
    Last Post: 14th January 2008, 11:59 AM
  3. How To Do A Workstation Re-install.?.
    By tickmike in forum Windows
    Replies: 15
    Last Post: 14th August 2006, 12:17 AM
  4. install updates
    By russdev in forum Windows
    Replies: 19
    Last Post: 28th September 2005, 11:32 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •