The Windows Registry is a hierarchical database that stores low-level settings for the Microsoft Windows operating system and for applications that opt to use the registry. The kernel, device drivers, services, Security Accounts Manager, and user interface can all use the registry. Here are some related WSUS contents. Handy WSUS Commands(Windows Server Update Services Commands, WAUACLT, PowerShell and USOClient), how to Start, Stop and Restart Windows Server Update Services (WSUS) via PowerShell and CMD, Windows Server Update Services: Windows 2016 Servers does not show up on WSUS console, and WSUS clients appear and disappear from the WSUS Update Services console. In this article, you will learn how to target WSUS clients with registry keys.
Steps to target WSUS clients with the registry keys
The below syntax should be saved with the .reg extension and run in order to create the registry keys. In this step, I will be using the registry key as this can also be used to point the server to the Upstream server. Create the registry key and save it anywhere on your PC, double-click to run the reg file created, and reboot your PC. For more information on how-tos surrounding Windows registry settings, see the following link.
Here is what the registry settings would look like, you can modify this by specifying the IP address. In the previous example, i used the local group policy. For more articles written by me on the windows registry, see the following hyperlinks. What is Registry Editor and how to access the registry hives? and how to search through the Windows registry.
Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate] "ElevateNonAdmins"=dword:00000001 "WUServer"="http://x.x.x.x:8530" "WUStatusServer"="http://x.x.x.x6:8530" [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU] "NoAutoUpdate"=dword:00000000 "AUOptions"=dword:00000003 "ScheduledInstallDay"=dword:00000000 "ScheduledInstallTime"=dword:0000000f "AutoInstallMinorUpdates"=dword:00000001 "UseWUServer"=dword:00000001
Run the created Registry Key
After saving the file with the .reg extension and running it, these entries will be created in the registry
Note: You can also use the local group policy alongside additional options.
In order to be reported and have the WSUS server approve updates on the server, run the following commands below. These commands below force our servers to contact the WSUS server.
They both can also be run at the same time as shown below
Navigate to the WSUS server and refresh the computer group, this server should appear. For more articles I have written, see the following hyperlinks below
– Configuring WSUS Email Notification to Work With Office365
– How to setup and configure Windows server update services (WSUS)
– Important Areas to Master on WSUS (Installed and not applicable, Install 1/4, and Installed / Not applicable 100)
– How to apply Windows Updates from WSUS to the server using AWS RunCommand
– How to Configure SSL between WSUS servers (Upstream and Downstream Servers)
View WSUS Reports
Note: To view the report: you have to download and install Microsoft Report Viewer.
With this installed reports can be generated as shown below
I hope you found this blog post helpful on how to target WSUS clients with the registry keys. Please refer to this article on how to disable unused Cisco Access Ports. If you have any questions, please let me know in the comment session.