Forum Discussion

PaulyHaley's avatar
PaulyHaley
Copper Contributor
Sep 21, 2023

Troubleshooting steps for Endpoint Config Mgr Clients not installing windows updates

Hi,

 

We are new to ECM/SCCM and have been using WSUS, then InTune and now want the best of breed and switching to ECM.  We have setup our environment, but some clients are not deploying the updates, they stay stuck Installing but nothing happens.

 

Can anyone offer a comprehensive list of steps they normally follow when troubleshooting client issues?

 

Many Thanks

Paul

  • LeonPavesic's avatar
    LeonPavesic
    Silver Contributor

    Hi PaulyHaley,

    Here is a  list of troubleshooting steps that you can follow to troubleshoot Endpoint Config Mgr Clients not installing Windows updates:

    1. Check the client logs. The first step is to check the client logs to see if there are any errors that indicate why the updates are not installing. The following logs are the most relevant:
      • WindowsUpdate.log. This log contains information about the Windows update process, including errors and warnings.
      • UpdatesDeployment.log. This log contains information about the Endpoint Config Mgr software update deployment process.
      • Hman.log. This log contains information about the Endpoint Config Mgr client agent.

    2. Verify that the client is communicating with the Configuration Manager server. You can do this by checking the UpdatesDeployment.log file for errors. If the client is not communicating with the server, you will need to troubleshoot the network connection or the Configuration Manager client agent.

    3. Verify that the client is in the correct boundary. The client must be in the boundary associated with the distribution point that contains the updates. You can check the client's boundary by running the following command:

     

    C:\Windows\System32>netcfg.exe -q​

     

    1. Verify that the updates are downloaded to the client. You can do this by checking the SoftwareDistribution folder on the client computer. The updates should be located in the Updates subfolder.

    2. Restart the Windows Update service. If the updates are downloaded to the client but not installing, try restarting the Windows Update service. You can do this by running the following command:

     

    C:\Windows\System32>net stop wuauserv
    C:\Windows\System32>net start wuauserv​

     

     

    1. Run the Software Update Troubleshooter. The Software Update Troubleshooter can help you identify and fix problems with the Windows update process. You can download the Software Update Troubleshooter from the Microsoft website.

    2. Reset the Windows Update components. If the Software Update Troubleshooter does not fix the problem, you can try resetting the Windows Update components. You can do this by running the following script:

     

    @echo off
    
    net stop wuauserv
    net stop bits
    net stop cryptsvc
    
    ren C:\Windows\System32\catroot2 catroot2.old
    ren C:\Windows\SoftwareDistribution SoftwareDistribution.old
    
    net start wuauserv
    net start bits
    net start cryptsvc
    
    pause​

     

    1. Reinstall the Endpoint Config Mgr client agent. If you have tried all of the above steps and the updates are still not installing, you can try reinstalling the Endpoint Config Mgr client agent. You can download the latest version of the client agent from the Microsoft website.

    If you are still having problems, you can contact Microsoft support for assistance.

    Please click Mark as Best Response & Like if my post helped you to solve your issue.
    This will help others to find the correct solution easily. It also closes the item.


    If the post was useful in other ways, please consider giving it Like.


    Kindest regards,


    Leon Pavesic

Resources