Prepare Windows Update Server

On the server WU01 configure synchronization for required classes and product updates:

Classes:
- Critical Updates
- Definition Updates
- Feature Packs
- Security Updates
- Service Packs
- Tools
- Update Rollups
- Updates
Products:
- Develeper Tools, Runtimes, and Redistributables (all sections)
- Windows 10
- Windows 7
- Windows Server 2016
- Windows Server 2019
Import KB2775511 for Windows 7 x64/x86 to WSUS.
Decline Windows Malicious Software Removal Tool.

If you have amount of disk space, add Automatic Approvals Rule with above classes and products, approve it to All Computers.

Another way: deploy clean (from ISO) Windows Virtual Machines at your infrastructure, connect it to WSUS server and run this script at WSUS:

  $updatesNeeded = Get-WsusUpdate -Classification All -Approval Unapproved -Status FailedOrNeeded
  $updatesNeeded | Approve-WsusUpdate -Action Install -TargetGroupName "All Computers”

This will be download and approve only needed actual updates.

Note: before start the script approve and accept the Licence Agreement for Internet Explorer 11 and Silverlight.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Prepare Windows Update Server

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

cMDTBuildLab DSC

Clone this wiki locally