+ Post New Thread
Results 1 to 7 of 7
Windows Server 2000/2003 Thread, Windows Updates Policy in Technical; Something I've not really seeen talked about on these forums, which is surprising... What policy do you use for applying ...
  1. #1

    Join Date
    Oct 2008
    Location
    Leeds
    Posts
    215
    Thank Post
    21
    Thanked 17 Times in 17 Posts
    Rep Power
    14

    Windows Updates Policy

    Something I've not really seeen talked about on these forums, which is surprising... What policy do you use for applying MS updates to servers and desktops?

    Do you auto download and install all critical and security updates to servers? Sounds like a reasonable compromise. But what about the other updates, how do you decide which to apply and when? And how do you deal with updates that have an unwanted affect?

    What policy do you have for desktops?

    My main concerns are to make sure security and critical updates don't get missed, but I am unsure of what is best practice on this and the other updates.

    We use WSUS on Windows 2008 Standard to push out updates.

    Thanks,

    Bruce.

  2. #2

    maniac's Avatar
    Join Date
    Feb 2007
    Location
    Kent
    Posts
    3,037
    Thank Post
    209
    Thanked 425 Times in 306 Posts
    Rep Power
    143
    Critical updates are automatically approved by our WSUS server, and rolled out automatically, forced to install on a Thursday. To avoid them hogging all our network bandwidth, The bandwidth settings in the updates section of group policy are set very low, so the updates trickle feed to our machines as they are downloaded by WSUS.

    Other updates are installed when we update our build images, unless there's a specific one we require to be installed in which case we'll manually approve it on WSUS.

    Mike.

  3. #3

    john's Avatar
    Join Date
    Sep 2005
    Location
    London
    Posts
    10,439
    Thank Post
    1,468
    Thanked 1,035 Times in 908 Posts
    Rep Power
    299
    WSUS box is set to download everything and bar updates for already approved ones and Forefront Client Security Upgrade (IE Anti-virus definitions and Anti-Virus software update) it waits for approval of them all. We tend to do this a week after patch Tuesday to give time for me to read Edugeek or pickup on issues off the web related to them.

    Servers are not set via WSUS (never got around to it) and they are set to notify me what they want and are all manual, and I tend to do them once a month in an evening when I remember.

  4. #4

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,691
    Thank Post
    824
    Thanked 2,570 Times in 2,187 Posts
    Blog Entries
    9
    Rep Power
    731
    Bandwidth costs would kill us if we let it download automaticly so we just go into the "needed updates" section of the WSUS server and download the required updates which are then pushed out and installed automaticlly.

  5. #5

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,392
    Thank Post
    797
    Thanked 1,588 Times in 1,391 Posts
    Blog Entries
    10
    Rep Power
    427
    Servers are done manually, nothing is installed automatically. I would rather watch them install and make sure noting goes wrong.

    WSUS id setup for all clients. We issue updates as they come after testing.

  6. #6

    Join Date
    Dec 2010
    Location
    USA
    Posts
    25
    Thank Post
    2
    Thanked 1 Time in 1 Post
    Blog Entries
    1
    Rep Power
    0
    So does the WSUS work pretty well?

  7. #7

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,392
    Thank Post
    797
    Thanked 1,588 Times in 1,391 Posts
    Blog Entries
    10
    Rep Power
    427
    Quote Originally Posted by siadam View Post
    So does the WSUS work pretty well?
    Does with all our computers.

SHARE:
+ Post New Thread

Similar Threads

  1. Windows Updates
    By neilmc in forum Windows
    Replies: 12
    Last Post: 3rd June 2010, 10:08 AM
  2. Not getting Windows 7 Updates?
    By Jon88 in forum Windows 7
    Replies: 9
    Last Post: 5th February 2010, 09:57 AM
  3. Windows updates
    By chrbb in forum Windows
    Replies: 1
    Last Post: 22nd April 2009, 08:33 PM
  4. Windows Updates
    By nawbus in forum Windows
    Replies: 11
    Last Post: 8th November 2005, 12:31 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •