Latest CU for server 2008 are not seen as missing.

Copper Contributor

Hi all, I am getting a strange issue where cumulative updates for server 2008 SP2 (both x86 and x64) and 2008 R2 are not seen as missing by Endpoint Manager.

I have followed all the ESU requirements, tried to install every single updates to be compliant for the ESU and all updates where not applicable (already installed).

When I am installing updates by hand, they are installing without any complaint.

I do not know where to look at and the problem is that they are showing compliant in report because the updates are not seen, but when a scan from Nessus is done, the result is that all my server 2008 and 2008 R2 are missing tones of patches.

 

All ideas on where to start investigating are welcome. 

 

Thank you!

 

Mathieu

2 Replies
Hi,
Have you install the 2107 update for ConfigMgr ?
Only the latest version of ConfigMgr can deploy ESU.

https://techcommunity.microsoft.com/t5/configuration-manager-blog/extended-security-updates-and-conf...
Sorry for the delay, had to make the update to MECM. Now we are at 2107. As I understand, the latest version is required but does that mean that the server need to have the latest client installed?
If yes, here is the situation.
The latest version of MECM client does require .Net 4.8 installed which cannot be installed on server 2008 because it is no longer supported.
If I am correct, this is now the end of software update deployment on Windows Server 2008, which is great because I will have more leverage to tell others to work their butt to migrate to another OS.
Can anyone confirm that the latest client is required to deploy the latest SU under ESU?

Thank you!

Mathieu