Glad it was helpful!!!

I really appreciate the feedback and support. Comments like these push me to make more videos! I'll do my best!!!

Glad it helped!

Great point! In production, SSL (with a valid cert) should always be used!

Glad it was helpful and I appreciate the feedback! :)

Thanks Scynk, I really appreciate feedback like this! Thank you so much and I'm happy if the videos are of help! :)

Happy that it helps! 🙂

You are welcome!

You're certainly welcome! Glad it helped!

Hey there, thanks for the question! The key is to just keep learning and never stop. Always realize there's more people that know more than you, and be prepared to learn from them. Find yourself IT communities like VMUG and others, that you can connect with like minded folks int he industry. We all can't know everything, the key is to focus on what you enjoy, and keep you mind open to other things! :)

@@StephenWagner Thank you! Appreciated🙏

Thanks, will do! I appreciate the feedback!

Hi Johnson, thanks for the feedback! As for your question, you should have different OUs (Organizational Units) for different computer objects. You always leave your domain controllers in the domain controllers OU (don't touch this), and your computers should be in the "Computers" OU. When you create GPOs, you should only link them to the OUs you want them to have effect on. So, with that being said, you can have both your DCs and Computers use your WSUS configuration GPO (which only specifies the WSUS server address), but then you'd want different GPOs for automatic updates. In most cases you'd have a GPO configured for automatic updates attached to Computers (or a custom OU you create), and then for your Domain Controllers, you'd leave it, or configure a GPO that disables automatic updates.

Glad it helped!

Hey there and thanks for the comment! 🙂 You'll need to configure another GPO for your OUs to control whether they install or just download. Usually on servers you can configure it to download (This way it waits for an admin to initiate the install), and on workstations you can have it auto install.

To be honest I'm not too sure if the home editions support using WSUS servers. You'd have to test.

Hi, when looking at the view listing updated, do you have "Unapproved" and "Failed or Needed" selected? The number of update should be less.

Hi Navin, thank you! And that's a great question! You should look at WSUS as an approval and caching mechanism, as it doesn't actually control Windows Updates on the servers, it only approves and makes the updates available. As far as controlling the behavior of Windows Updates on computers and servers, this is all done via GPO. On the GPOs you can specify things like to only download, download and install, etc, and you can also configure scheduled maintenance windows to install the updates. For example, in my environment, I confiugred the GPOs to only download the updates, as I would prefer to install them manually when I do updates every couple weeks. Hope this helps!

@@StephenWagner Thank you very much for the reply and great info!

Big thanks! :D

If you need more space, I would recommend moving the WSUS data to another drive/volume. There's a process and workflow to do this.

@@StephenWagner, Thanks for your valuable reply kindly share the process or workflow details if you have them. thanks ones again.

Hello, I believe the "Essential Experience" is now a Windows Server Feature and Role that you install after you install the operating system.

Hi ivor, I generally never pay attention to that list. Those are the updates pending approval that include updates that do not apply to your environment. I recommend only paying attention to the update list that by default only shows updates that are required and pending approval.

Hey Homero, it sounds like those two computers are the only ones that received the group policy updates. Are the rest of your systems domain joined? And is the policy applying to other systems? Also, did you give it time for them to run through the invisible first time processes?

@@StephenWagner It was a problem with the firewall, now everything showed up. thanks a lot!!

W00t! Glad to hear!

Hi CryptoChristian, What type of VPN are you using and how do you have it configured? Technically this type of config should work fine. I've completed many deployments where systems either VPN in, or they connect via Site-to-Site VPNs.

Never install WSUS on a DC. It should be on it's own server, or a server that you verify can house multiple services.

@@StephenWagner if you were starting fresh in IT now, what skills would you focus on?

@mrmuffin5046, starting fresh, I'd say: VMware vSphere, VMware Horizon, Networking, and cloud integrations (Azure AD/Entra ID, etc)! :)

Hi Anderson, I've never seen this before. Is there a chance that a 3rd party application is causing this? Additionally, were all the applications installed properly using install mode on the RDS Server?

Thanks! :D

Hi Naruto, does it say anything else other than fatal error?

@@StephenWagner After that I tried removing and re installing the role but now it's not producing any temp file for the event and just giving fatal error, if you can share your mail, I'll send the screenshot of it

Hi Naruto, if you uninstalled the role, there's a chance the old database is still present. You'll have to clear the WSUS database and reinitialize it to restart the configuration of the role.

@@StephenWagner I used the WID instead of SQL DB, but as I can see some other processes are also using WID.. But my AD is not installed in this server fyi

What helped me is removing the 'WSUS Administration' website in IIS manager and restart the post configuration. After that, the post configuration was completed succesfully.

I understand what you're saying and it's a valid point. But you know how it goes, IT people always crack jokes about EULAs as well as sending diagnostic information. And on a serious note, I just don't like software transmitting information from my network, especially when monitoring outbound traffic not knowing what something is.

Gigachad loves the support! 😁😂

Amen to that buddy! lol I'm still surprised when I see people use the Start Menu to find applications. You just need 2 clicks and maybe the first 3-4 letters. :) Thanks for leaving the tip for the viewers!