T
Tom Penharston
This scenario includes client computers (Windows XP Pro SP 2) and a
server (Windows 2000 Server). The server is running AD, DNS SUS, and
IIS.
The policies are managed via Group Policy, Computer Configuration,
Administrative Templates, Windows Update. I'll export the policies and
paste the text:
----------
Setting State
Do not display 'Install Updates and Shut Down' option in Shut Down
Windows dialog box
Not configured
Do not adjust default option to 'Install Updates and Shut Down' in Shut
Down Windows dialog box
Not configured
Configure Automatic Updates
Enabled (option #3)
Specify intranet Microsoft update service location
Enabled (http://111.111.111.111 correct ip address)
Enable client-side targeting
Not configured
Reschedule Automatic Updates scheduled installations
Not configured
No auto-restart for scheduled Automatic Updates installations
Not configured
Automatic Updates detection frequency
Not configured
Allow Automatic Updates immediate installation
Not configured
Delay Restart for scheduled installations
Not configured
Re-prompt for restart with scheduled installations
Not configured
----------
As you can see, only two policies are enabled: Configure Automatic
Updates and Specify intranet Microsoft update service location.
My clients download updates from MS regardless of my SUS approval list.
Therefore, my SUS Server is not providing a useful service.
Please advise. My clients should obtain updates only from the SUS.
server (Windows 2000 Server). The server is running AD, DNS SUS, and
IIS.
The policies are managed via Group Policy, Computer Configuration,
Administrative Templates, Windows Update. I'll export the policies and
paste the text:
----------
Setting State
Do not display 'Install Updates and Shut Down' option in Shut Down
Windows dialog box
Not configured
Do not adjust default option to 'Install Updates and Shut Down' in Shut
Down Windows dialog box
Not configured
Configure Automatic Updates
Enabled (option #3)
Specify intranet Microsoft update service location
Enabled (http://111.111.111.111 correct ip address)
Enable client-side targeting
Not configured
Reschedule Automatic Updates scheduled installations
Not configured
No auto-restart for scheduled Automatic Updates installations
Not configured
Automatic Updates detection frequency
Not configured
Allow Automatic Updates immediate installation
Not configured
Delay Restart for scheduled installations
Not configured
Re-prompt for restart with scheduled installations
Not configured
----------
As you can see, only two policies are enabled: Configure Automatic
Updates and Specify intranet Microsoft update service location.
My clients download updates from MS regardless of my SUS approval list.
Therefore, my SUS Server is not providing a useful service.
Please advise. My clients should obtain updates only from the SUS.