windows updates not working
This morning when I opened my laptop it sent me to Bitlocker recovery. Since then several apps aren't working properly or won't open and when I try to Do my windows updates, the system acts like it's going to do it it shuts down and turns right back on and the box comes up that says do you want to do your updates now it's just a continuous process that never stops. I contacted Windows help chat and they did nothing for me besides the fact they were super slow and told me I needed to request help through the windows insider program. Can someone help me please turn my laptop off.
No control which updates to install anymore
Hello Community, In Windows Updates, in server 2022, Its all or nothing. Cant control which updates to install. Since this seems to be the default behavior, Is this the best practice to do all the updates at once? Just do them all at once as only choice and cross your fingers? Thanks, JohnDefine Patch Approvals in WSUS but pull patches from Windows Update (Internet)
We currently use WSUS to distribute Microsoft patches and also use Solarwinds Patch Manager to push 3rd party patches into WSUS. This allows us to fully patch an endpoint with all MS and 3rd party software patches via Windows Update Agent/WSUS. We now have a fleet of laptops connected back to our Datacenter via a VPN and they are consuming a lot of bandwith during patching cycles. We have the following challanges: We do use some throttling on BITS/Delivery opitmization but have had mixed results We have MECM but don't use Cloud Management gatway as was deemed too expensive. we have not moved patching to MECM yet. If we use Windows Update for Business we cannot patch 3rd party updates and loose some control around pilot groups and reporting in our estimation Q: So is there a way for us to continue to define the approved patches/metadata via WSUS but have the system pull the patches files from the internet (Windows Update) source? Perhaps this is possible with MECM?Unexpected Automatic Windows Server Updates Despite GPO and WSUS Configurations
Hello everyone, I am experiencing a disruptive issue across a number of our Windows servers (ranging from Server 2012 to Server 2022). Despite a carefully managed WSUS implementation and GPO enforcement for Windows Updates, we have been facing an issue where several updates are getting automatically installed on these servers. The problem is, these updates are not ones we have explicitly approved, nor are they manually triggered for download/installation. The automatic reboots following these installations are causing significant service disruptions. Furthermore, the behavior seems to be somewhat random, which makes it even more challenging to root cause. Here is a summary of the GPO and WSUS configurations, and what I have verified so far: The GPO for Windows Updates is configured to '4 - Auto download and schedule the install'. The RSOP confirmed that there are no conflicting GPOs. WSUS is functioning correctly and the automatic approval of updates has been disabled. Dual Scan is not a factor as it's not relevant to the Windows Server versions we're using. It has been confirmed that the updates in question are indeed WSUS updates, but they haven’t been approved by us. The issue does not pertain to pre-downloaded update files or Service Stack Updates (SSUs). Given the above points, I am having a hard time figuring out why these updates are being installed and causing unplanned reboots. I would really appreciate it if anyone who has encountered a similar issue or anyone with insights could shed some light on this. Thank you in advance for your assistance! BestDo not display "Install updates and reboot"
Hello all, I have a question from 1 of my clients: In this environment there are a lot of Windows 11 laptops being used as shared devices. All devices are managed with Intune and the devices are deployed with a self deploying Autopilot profile. The problem experienced on these shared devices is that regularly the device gets unlocked because the previous user is still logged into it. Another user cannot be selected and the existing user has to log out first. We have already ensured that the user cannot lock the laptop in standard ways. We now have the impression that it is due to windows updates and then the option therein "Install updates and restart". When you use this option the laptop comes back in this unlocked state. If you click on the 2nd option "Install updates and shut down" then it goes fine. Is there a rule or setting that allows you to specify that the "Install updates and restart" option is not visible? Or is there another solution for this?
"Windows Update" settings page is missing and everything is greyed out.
>Delivery Optimization it looks like this, i was fixing my bits cuz it won't start & wuauserv service missing by downloading new windows .iso 23H2 (22631.2361), last thing i did was running DISM before installing with .iso , after that every services related to update (wuauserv, bits, cryptsvc, & appidsvc) is fixed but it came with new problems like i listed above.
Windows Server Delivery Optimization support for more products
Actually, obtaining "updates" is one of the most consuming network bandwith and a cost expensive thing often misrepresented in enterprise network architecture. Since many years we always try to adapt or environment to put in place some mechanisms to reduce this comsuption like WSUS server, Branch Cache, proxy caching, etc. But recently Microsoft have changed some method to obtain many updates where we need to also change the "caching" method. On Windows clients, it's somewhat not an issue. Using SCCM with Microsoft Connected Cache and Delivery Optimization (DO) it's cover almost Microsoft updates (including Windows, Edge, Office, UWP apps from Store, etc.) On Windows Server, it's not the same thing! Actually Windows Server doesn't offer the same DO support than Windows Client. Windows Server just receive "Edge and Windows" updates with a DO caching method. We recently started to migrate our Office product from Office 2016 (MSI) where updates was provided by WSUS through Office 365 or Office 2021 LTSC (C2R) where updates are coming from Office CDN. It seem Office 365 Apps Updates are not covered by Delivery Optimization on Windows Server platform like explained in the link below !!! What is Delivery Optimization? - Windows Deployment | Microsoft Learn We also in a migration phase for our antivirus to use Microsoft Defender. It's the same ting again. All Defender updates not seem to be using DO under Windows Server... -------------------------- Then, my suggestion to Windows Dev Team is to innovate on that ! Please offer same Delivery Optimization for Windows Client and Windows Server.
Unable to install Feature Updates using Intune policies
Hello, I am encountering an issue where Feature Updates are not being applied to a group of 10 computers that I have assigned an Update Ring and Intune Feature & Quality Update policies to. The policies are correctly configured and Quality updates are being applied successfully without any issues. However, Feature Updates are not being installed on the target computers. To give you more context, I have created an Update Ring in Intune and assigned it to the 10 target computers for testing. The Update Ring is configured to receive both Feature and Quality Update policies. The policy settings are correctly configured as seen in the picture below: Feature Update Policy: To try and fix the issue, I have performed the following steps: Restarted the services: Bits, Windows Updates, Cryptography Service, Windows Installer, Microsoft Assistant Configured Windows Health Monitoring to Windows Updates Configured Telemetry Turned off Firewall & Proxy Ran SFC Scan & DISM Scan and Restore commands Renamed \ Deleted the folders SoftwareDistrubution and Cartoon2 Configured MDM Over GP Policy Turned off Safe Guard Ran the computer in Clean Boot while only Microsoft Services are on Disabled all Startup Applications Checked Registry configurations to ensure MDM policy is applied Ran the Windows Updates Troubleshooter. Removing GPO Policies that were applied to computers. Ran the following commands: net stop cryptSvc net stop bits net stop msiserver ren C:\Windows\SoftwareDistribution SoftwareDistribution.old ren C:\Windows\System32\catroot2 catroot2.old net start wuauserv net start cryptSvc net start bits net start msiserver Furthermore, I have attempted to run the updates through the Windows Updates page and a KB file, but both methods resulted in errors with codes 0x80240437, 0x8019001, and 0x8024401C. I have consulted various troubleshooting websites but have not been able to find a solution. Any help would be greatly appreciated.
Enable Restart Pop-ups for Windows Updates in Intune
Hi All, I’m trying to get notification popups working for all our Windows 10 devices but can’t seem to find the right settings. Currently we have the restart icon at the bottom right in the task bar which is useful... But we want to have a pop-up notification of a restart that appears onscreen so users will be notified in a more obvious way. I think the problem may be in the Advanced Windows Update Settings on all devices. This is grayed out and looks to be set to ‘Off’ but I cannot find where this setting is controlled. As these are all Hybrid Joined devices in Co-management I’ve checked through Group Policy and in our Update Rings policy and Windows Update Configuration Policy but I cant find where to enable this setting. Does anyone know where this setting is or has anyone managed to configure pop ups for restart notifications in Intune?Manage Windows Updates From the Cloud Using Endpoint Manager
Still jumping through hoops to curate Windows updates to meet your organizational needs? Make the process easier and faster by having them delivered directly from the Windows Update cloud service following the policies you set in Endpoint Manager.
