Windows Server Delivery Optimization support for more products
Actually, obtaining "updates" is one of the most consuming network bandwith and a cost expensive thing often misrepresented in enterprise network architecture. Since many years we always try to adapt or environment to put in place some mechanisms to reduce this comsuption like WSUS server, Branch Cache, proxy caching, etc. But recently Microsoft have changed some method to obtain many updates where we need to also change the "caching" method. On Windows clients, it's somewhat not an issue. Using SCCM with Microsoft Connected Cache and Delivery Optimization (DO) it's cover almost Microsoft updates (including Windows, Edge, Office, UWP apps from Store, etc.) On Windows Server, it's not the same thing! Actually Windows Server doesn't offer the same DO support than Windows Client. Windows Server just receive "Edge and Windows" updates with a DO caching method. We recently started to migrate our Office product from Office 2016 (MSI) where updates was provided by WSUS through Office 365 or Office 2021 LTSC (C2R) where updates are coming from Office CDN. It seem Office 365 Apps Updates are not covered by Delivery Optimization on Windows Server platform like explained in the link below !!! https://learn.microsoft.com/en-us/windows/deployment/do/waas-delivery-optimization We also in a migration phase for our antivirus to use Microsoft Defender. It's the same ting again. All Defender updates not seem to be using DO under Windows Server... -------------------------- Then, my suggestion to Windows Dev Team is to innovate on that ! Please offer same Delivery Optimization for Windows Client and Windows Server.Unexpected Automatic Windows Server Updates Despite GPO and WSUS Configurations
Hello everyone, I am experiencing a disruptive issue across a number of our Windows servers (ranging from Server 2012 to Server 2022). Despite a carefully managed WSUS implementation and GPO enforcement for Windows Updates, we have been facing an issue where several updates are getting automatically installed on these servers. The problem is, these updates are not ones we have explicitly approved, nor are they manually triggered for download/installation. The automatic reboots following these installations are causing significant service disruptions. Furthermore, the behavior seems to be somewhat random, which makes it even more challenging to root cause. Here is a summary of the GPO and WSUS configurations, and what I have verified so far: The GPO for Windows Updates is configured to '4 - Auto download and schedule the install'. The RSOP confirmed that there are no conflicting GPOs. WSUS is functioning correctly and the automatic approval of updates has been disabled. Dual Scan is not a factor as it's not relevant to the Windows Server versions we're using. It has been confirmed that the updates in question are indeed WSUS updates, but they haven’t been approved by us. The issue does not pertain to pre-downloaded update files or Service Stack Updates (SSUs). Given the above points, I am having a hard time figuring out why these updates are being installed and causing unplanned reboots. I would really appreciate it if anyone who has encountered a similar issue or anyone with insights could shed some light on this. Thank you in advance for your assistance! Best
