Hey guys, first off, new to the forums although you have been my main source of information for about 7 months, for some reason I never got round to registering, so no more excuses.
Anyway, straight to the point.
I am currently working in a college and we have some members of staff that take thier laptops everywhere which doesn't just include home and school but abroad as well, all work related.
Either way, I have been called in to help another technician and first on the list was to setup WSUS. Something I have done a plenty of times before, however the issue I foresee happening is that when a member of staff comes back from an extended holiday they are going to have a laptop that is going to require X amount of updates.
I am wondering if it is possible to set up the laptop to use WSUS when inside the college and on the network but also set it so it can recognise when its outside the network which will then trigger it to use windows updates from the internet as its second choice. Ensuring the laptop is always kept up-to-date.
The college has 6 main servers, one of which is dedicated for WSUS alone, all Server 2008 R2.
The setup is all group policy, no professional management systems.
So main question, is it possible to have a combination of WSUS and internet, or am I just speaking rubbish. Until someone tells me I am, I might be looking for something thats just not possible.
We have remote access for our laptops via ISA server VLAN - when they connect to the school network the laptop downloads any WSUS updates it's been assigned. Users can connect to the VLAN even if they're logged onto the laptop using a non-domain user account.
You can create two different group policy's, specifying the windows updates settings in each - one to point to wsus and another to point to windows update. Then apply each gpo to seperate containers. This may involve re-organizing your AD computers a bit.